What is the severity of CVE-2007-0071?

CVE-2007-0071 has a high severity due to its potential to allow remote code execution.

How do I fix CVE-2007-0071?

To fix CVE-2007-0071, upgrade Adobe Flash Player to version 8.0.40.0 or later, or 9.0.124.0 or later.

What are the affected versions in CVE-2007-0071?

CVE-2007-0071 affects Adobe Flash Player versions 8.0.39.0 and earlier, as well as version 9.0.115.0 and earlier.

What type of attack does CVE-2007-0071 enable?

CVE-2007-0071 enables remote attackers to execute arbitrary code via a crafted SWF file.

Is CVE-2007-0071 still a concern for users?

CVE-2007-0071 is no longer a concern for users using updated versions of Adobe Flash Player.

Vulnerability/
CVE-2007-0071

critical

9.3

CWE

189 119 190

9/4/2008

7/8/2024

CVE-2007-0071: Buffer Overflow

First published: Wed Apr 09 2008(Updated: )

Integer overflow in Adobe Flash Player 9.0.115.0 and earlier, and 8.0.39.0 and earlier, allows remote attackers to execute arbitrary code via a crafted SWF file with a negative Scene Count value, which passes a signed comparison, is used as an offset of a NULL pointer, and triggers a buffer overflow.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Adobe Flash Player for Internet Explorer 11	>=8.0<=8.0.39.0
Adobe Flash Player for Internet Explorer 11	>=9.0<=9.0.115.0

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2007-0071?
CVE-2007-0071 has a high severity due to its potential to allow remote code execution.
How do I fix CVE-2007-0071?
To fix CVE-2007-0071, upgrade Adobe Flash Player to version 8.0.40.0 or later, or 9.0.124.0 or later.
What are the affected versions in CVE-2007-0071?
CVE-2007-0071 affects Adobe Flash Player versions 8.0.39.0 and earlier, as well as version 9.0.115.0 and earlier.
What type of attack does CVE-2007-0071 enable?
CVE-2007-0071 enables remote attackers to execute arbitrary code via a crafted SWF file.
Is CVE-2007-0071 still a concern for users?
CVE-2007-0071 is no longer a concern for users using updated versions of Adobe Flash Player.

agent/references
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/severity
agent/last-modified-date
agent/author
agent/weakness
agent/description
agent/event
agent/first-publish-date
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-historical
vendor/adobe
canonical/adobe flash player for internet explorer 11
version/adobe flash player for internet explorer 11/8.0
version/adobe flash player for internet explorer 11/8.0.39.0
version/adobe flash player for internet explorer 11/9.0
version/adobe flash player for internet explorer 11/9.0.115.0

Frequently Asked Questions

What is the severity of CVE-2007-0071?
CVE-2007-0071 has a high severity due to its potential to allow remote code execution.
How do I fix CVE-2007-0071?
To fix CVE-2007-0071, upgrade Adobe Flash Player to version 8.0.40.0 or later, or 9.0.124.0 or later.
What are the affected versions in CVE-2007-0071?
CVE-2007-0071 affects Adobe Flash Player versions 8.0.39.0 and earlier, as well as version 9.0.115.0 and earlier.
What type of attack does CVE-2007-0071 enable?
CVE-2007-0071 enables remote attackers to execute arbitrary code via a crafted SWF file.
Is CVE-2007-0071 still a concern for users?
CVE-2007-0071 is no longer a concern for users using updated versions of Adobe Flash Player.

CVE-2007-0071: Buffer Overflow

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2007-0071?

How do I fix CVE-2007-0071?

What are the affected versions in CVE-2007-0071?

What type of attack does CVE-2007-0071 enable?

Is CVE-2007-0071 still a concern for users?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2007-0071?

How do I fix CVE-2007-0071?

What are the affected versions in CVE-2007-0071?

What type of attack does CVE-2007-0071 enable?

Is CVE-2007-0071 still a concern for users?