Unrated severityNVD Advisory· Published Apr 9, 2008· Updated Apr 23, 2026
CVE-2007-6019
CVE-2007-6019
Description
Adobe Flash Player 9.0.115.0 and earlier, and 8.0.39.0 and earlier, allows remote attackers to execute arbitrary code via an SWF file with a modified DeclareFunction2 Actionscript tag, which prevents an object from being instantiated properly.
Affected products
42- cpe:2.3:a:adobe:air:1.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash:basic:8:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:adobe:flash:basic:8:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash:professional:8:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash:professional:cs3:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*+ 36 more
- cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*range: <=9.0.115.0
- cpe:2.3:a:adobe:flash_player:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:7.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:7.0.25:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:7.0.63:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:7.0.69.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:7.0.70.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:7.0_r67:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:7.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:7.2:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:8.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:8.0.24.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:8.0.34.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:8.0.35.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:8.0.39.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:8.0:*:basic:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:8.0:*:pro:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:8:*:pro:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:8:*:professional:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.112.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.114.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.124.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.155.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.16:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.16:*:windows:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.18d60:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.20:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.20.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.28:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.28.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.31:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.31.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.45.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.47.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flash_player:9.0.48.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:flex:3.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
22- www.adobe.com/support/security/bulletins/apsb08-11.htmlnvdPatchVendor Advisory
- www.securityfocus.com/bid/28694nvdExploitPatch
- secunia.com/advisories/29763nvdVendor Advisory
- secunia.com/advisories/29865nvdVendor Advisory
- secunia.com/advisories/30430nvdVendor Advisory
- secunia.com/advisories/30507nvdVendor Advisory
- www.us-cert.gov/cas/techalerts/TA08-100A.htmlnvdUS Government Resource
- www.us-cert.gov/cas/techalerts/TA08-150A.htmlnvdUS Government Resource
- lists.apple.com/archives/security-announce/2008//May/msg00001.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2008-04/msg00006.htmlnvd
- securityreason.com/securityalert/3805nvd
- sunsolve.sun.com/search/document.donvd
- www.gentoo.org/security/en/glsa/glsa-200804-21.xmlnvd
- www.redhat.com/support/errata/RHSA-2008-0221.htmlnvd
- www.securityfocus.com/archive/1/490623/100/0/threadednvd
- www.securityfocus.com/archive/1/490824/100/0/threadednvd
- www.securitytracker.com/idnvd
- www.vupen.com/english/advisories/2008/1697nvd
- www.vupen.com/english/advisories/2008/1724/referencesnvd
- www.zerodayinitiative.com/advisories/ZDI-08-021nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/41717nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10160nvd
News mentions
0No linked articles in our index yet.