Adobe Flash vulnerabilities

CVE-2007-6019 [CRITICAL] CVE-2007-6019: Adobe Flash Player 9.0.115.0 and earlier, and 8.0.39.0 and earlier, allows remote attackers to execu Adobe Flash Player 9.0.115.0 and earlier, and 8.0.39.0 and earlier, allows remote attackers to execute arbitrary code via an SWF file with a modified DeclareFunction2 Actionscript tag, which prevents an object from being instantiated properly.

CVE-2008-1201 [MEDIUM] CWE-94 CVE-2008-1201: Multiple unspecified vulnerabilities in FLA file parsing in Adobe Flash CS3 Professional, Flash Prof Multiple unspecified vulnerabilities in FLA file parsing in Adobe Flash CS3 Professional, Flash Professional 8, and Flash Basic 8 on Windows allow user-assisted remote attackers to execute arbitrary code via a crafted .FLA file.