What is the severity of CVE-2006-4640?

CVE-2006-4640 is categorized as a medium severity vulnerability due to its potential for exploitation via user assistance.

How do I fix CVE-2006-4640?

To fix CVE-2006-4640, upgrade Adobe Flash Player to version 9.0.16.0 or later.

What systems are affected by CVE-2006-4640?

CVE-2006-4640 affects Adobe Flash Player versions prior to 9.0.16.0, including various editions such as 8.X.

What type of attack does CVE-2006-4640 facilitate?

CVE-2006-4640 allows attackers to bypass the allowScriptAccess protection, potentially leading to unauthorized actions.

Is user intervention necessary for CVE-2006-4640 exploitation?

Yes, CVE-2006-4640 requires user-assisted interaction for exploitation to occur.

Vulnerability/
CVE-2006-4640

medium

6.8

CWE

264

12/9/2006

7/8/2024

CVE-2006-4640

First published: Tue Sep 12 2006(Updated: )

Unspecified vulnerability in Adobe Flash Player before 9.0.16.0 allows user-assisted remote attackers to bypass the allowScriptAccess protection via unspecified vectors.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Adobe Flash Player for Internet Explorer 11	<=8.0.24.0
Adobe Flash Player for Internet Explorer 11
Adobe Flash Player for Internet Explorer 11	=8
Adobe Flash Player for Internet Explorer 11	=mx_2004

Remedy

http://secunia.com/advisories/21865

Remedy

http://www.adobe.com/support/security/bulletins/apsb06-11.html

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2006-4640?
CVE-2006-4640 is categorized as a medium severity vulnerability due to its potential for exploitation via user assistance.
How do I fix CVE-2006-4640?
To fix CVE-2006-4640, upgrade Adobe Flash Player to version 9.0.16.0 or later.
What systems are affected by CVE-2006-4640?
CVE-2006-4640 affects Adobe Flash Player versions prior to 9.0.16.0, including various editions such as 8.X.
What type of attack does CVE-2006-4640 facilitate?
CVE-2006-4640 allows attackers to bypass the allowScriptAccess protection, potentially leading to unauthorized actions.
Is user intervention necessary for CVE-2006-4640 exploitation?
Yes, CVE-2006-4640 requires user-assisted interaction for exploitation to occur.

agent/type
agent/remedy
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/weakness
agent/last-modified-date
agent/severity
agent/author
agent/references
agent/event
agent/first-publish-date
agent/description
agent/source
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/adobe
canonical/adobe flash player for internet explorer 11
version/adobe flash player for internet explorer 11/8.0.24.0
version/adobe flash player for internet explorer 11/8
version/adobe flash player for internet explorer 11/mx_2004

Frequently Asked Questions

What is the severity of CVE-2006-4640?
CVE-2006-4640 is categorized as a medium severity vulnerability due to its potential for exploitation via user assistance.
How do I fix CVE-2006-4640?
To fix CVE-2006-4640, upgrade Adobe Flash Player to version 9.0.16.0 or later.
What systems are affected by CVE-2006-4640?
CVE-2006-4640 affects Adobe Flash Player versions prior to 9.0.16.0, including various editions such as 8.X.
What type of attack does CVE-2006-4640 facilitate?
CVE-2006-4640 allows attackers to bypass the allowScriptAccess protection, potentially leading to unauthorized actions.
Is user intervention necessary for CVE-2006-4640 exploitation?
Yes, CVE-2006-4640 requires user-assisted interaction for exploitation to occur.

CVE-2006-4640

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2006-4640?

How do I fix CVE-2006-4640?

What systems are affected by CVE-2006-4640?

What type of attack does CVE-2006-4640 facilitate?

Is user intervention necessary for CVE-2006-4640 exploitation?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2006-4640?

How do I fix CVE-2006-4640?

What systems are affected by CVE-2006-4640?

What type of attack does CVE-2006-4640 facilitate?

Is user intervention necessary for CVE-2006-4640 exploitation?