CVE-2007-2500

NONECVSS 0.0

0.0

server/parser/sprite_definition.cpp in GNU Gnash (aka GNU Flash Player) 0.7.2 allows remote attackers to execute arbitrary code via a large number of SHOWFRAME elements within a DEFINESPRITE element, which triggers memory corruption and enables the attacker to call free with an arbitrary address, probably resultant from a buffer overflow.

🔗 References (16)

cve@mitrehttp://osvdb.org/37273
cve@mitrehttp://savannah.gnu.org/bugs/?19774
cve@mitrehttp://secunia.com/advisories/25787
cve@mitrehttp://www.novell.com/linux/security/advisories/2007_13_sr.html
cve@mitrehttp://www.securityfocus.com/bid/23765
cve@mitrehttp://www.securitytracker.com/id?1018041
cve@mitrehttp://www.vupen.com/english/advisories/2007/1688
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/34148
af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/37273
af854a3a-2127-422b-91ae-364da2661108http://savannah.gnu.org/bugs/?19774
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/25787
af854a3a-2127-422b-91ae-364da2661108http://www.novell.com/linux/security/advisories/2007_13_sr.html
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/23765
af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id?1018041
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2007/1688

Is Your Infrastructure Affected by CVE-2007-2500?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2007-2500

📅 Published

🔄 Last Modified

🔗 References (16)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2007-2500?