Red Hat Customer Portal

Skip to main content

CVE-2007-6243

Impact:
Moderate
Public Date:
2007-12-05
CWE:
CWE-79
Bugzilla:
440664: CVE-2007-6243 Flash Player cross-domain and cross-site scripting flaws

The MITRE CVE dictionary describes this issue as:

Adobe Flash Player 9.x up to 9.0.48.0, 8.x up to 8.0.35.0, and 7.x up to 7.0.70.0 does not sufficiently restrict the interpretation and usage of cross-domain policy files, which makes it easier for remote attackers to conduct cross-domain and cross-site scripting (XSS) attacks.

Find out more about CVE-2007-6243 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux Supplementary 5 (flash-plugin) RHSA-2007:1126 2007-12-18
Red Hat Enterprise Linux AS version 4 Extras (flash-plugin) RHSA-2008:0221 2008-04-08
Red Hat Enterprise Linux AS version 3 Extras (flash-plugin) RHSA-2007:1126 2007-12-18
Red Hat Enterprise Linux AS version 4 Extras (flash-plugin) RHSA-2008:0980 2008-11-12
Red Hat Enterprise Linux AS version 3 Extras (flash-plugin) RHSA-2008:0980 2008-11-12
Red Hat Enterprise Linux AS version 3 Extras (flash-plugin) RHSA-2008:0221 2008-04-08
Red Hat Enterprise Linux AS version 4 Extras (flash-plugin) RHSA-2007:1126 2007-12-18
Red Hat Enterprise Linux Supplementary 5 (flash-plugin) RHSA-2008:0221 2008-04-08
Red Hat Enterprise Linux Supplementary 5 (flash-plugin) RHSA-2008:0945 2008-10-28

Affected Packages State

Platform Package State
Red Hat Enterprise Linux Supplementary 4.5.z flash-plugin 9.0.115.0-1.el4 Fixed

Last Modified