CVE-2007-6246
published 2007-12-20CVE-2007-6246: Adobe Flash Player 9.x up to 9.0.48.0, 8.x up to 8.0.35.0, and 7.x up to 7.0.70.0, when running on Linux, uses insecure permissions for memory, which might…
PriorityP423medium4.4CVSS 2.0
AVLACMAuNCPIPAP
EPSS
11.89%
95.6th percentile
Adobe Flash Player 9.x up to 9.0.48.0, 8.x up to 8.0.35.0, and 7.x up to 7.0.70.0, when running on Linux, uses insecure permissions for memory, which might allow local users to gain privileges.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | flash_player | <= 9.0.48.0 | — |
CVSS provenance
nvdv2.04.4MEDIUMAV:L/AC:M/Au:N/C:P/I:P/A:P
vendor_redhat4.4MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-v825-9g78-r6x2: Adobe Flash Player 9
ghsa_unreviewed·2022-05-01
CVE-2007-6246 [MEDIUM] GHSA-v825-9g78-r6x2: Adobe Flash Player 9
Adobe Flash Player 9.x up to 9.0.48.0, 8.x up to 8.0.35.0, and 7.x up to 7.0.70.0, when running on Linux, uses insecure permissions for memory, which might allow local users to gain privileges.
Red Hat
flash: privilege escalation
vendor_redhat·2007-12-17·CVSS 4.4
CVE-2007-6246 [MEDIUM] flash: privilege escalation
flash: privilege escalation
Adobe Flash Player 9.x up to 9.0.48.0, 8.x up to 8.0.35.0, and 7.x up to 7.0.70.0, when running on Linux, uses insecure permissions for memory, which might allow local users to gain privileges.
No detection rules found.
No public exploits indexed.
http://lists.opensuse.org/opensuse-security-announce/2007-12/msg00007.htmlhttp://secunia.com/advisories/28157http://secunia.com/advisories/28161http://secunia.com/advisories/28213http://secunia.com/advisories/28570http://secunia.com/advisories/30507http://securitytracker.com/id?1019116http://sunsolve.sun.com/search/document.do?assetkey=1-26-238305-1http://www.adobe.com/support/security/bulletins/apsb07-20.htmlhttp://www.gentoo.org/security/en/glsa/glsa-200801-07.xmlhttp://www.redhat.com/support/errata/RHSA-2007-1126.htmlhttp://www.securityfocus.com/bid/26929http://www.securityfocus.com/bid/26965http://www.us-cert.gov/cas/techalerts/TA07-355A.htmlhttp://www.vupen.com/english/advisories/2007/4258http://www.vupen.com/english/advisories/2008/1724/referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/39136https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10519http://lists.opensuse.org/opensuse-security-announce/2007-12/msg00007.htmlhttp://secunia.com/advisories/28157http://secunia.com/advisories/28161http://secunia.com/advisories/28213http://secunia.com/advisories/28570http://secunia.com/advisories/30507http://securitytracker.com/id?1019116http://sunsolve.sun.com/search/document.do?assetkey=1-26-238305-1http://www.adobe.com/support/security/bulletins/apsb07-20.htmlhttp://www.gentoo.org/security/en/glsa/glsa-200801-07.xmlhttp://www.redhat.com/support/errata/RHSA-2007-1126.htmlhttp://www.securityfocus.com/bid/26929http://www.securityfocus.com/bid/26965http://www.us-cert.gov/cas/techalerts/TA07-355A.htmlhttp://www.vupen.com/english/advisories/2007/4258http://www.vupen.com/english/advisories/2008/1724/referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/39136https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10519
2007-12-20
Published