CVE-2003-1017

Macromedia Flash Player before 7,0,19,0 stores a Flash data file in a predictable location that is accessible to web browsers such as Internet Explorer and Opera, which allows remote attackers to read restricted files via vulnerabilities in web browsers whose exploits rely on predictable names.

Published: Jan 5, 2004
Updated: Apr 13, 2023
CVE: CVE-2003-1017
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
macromedia / flash_player	5.0_r50	5.0_r50.x
macromedia / flash_player	5.0	5.0.x
macromedia / flash_player	6.0.79.0	6.0.79.0.x
macromedia / director	5.0	5.0.x
macromedia / flash_player	6.0.65.0	6.0.65.0.x
macromedia / flash_player	6.0.29.0	6.0.29.0.x
macromedia / flash_player	6.0	6.0.x
macromedia / flash_player	4.0_r12	4.0_r12.x
macromedia / flash_player	6.0.47.0	6.0.47.0.x
macromedia / flash_player	6.0.40.0	6.0.40.0.x

http://www.macromedia.com/devnet/security/security_zone/mpsb03-08.html
http://www.securityfocus.com/bid/8900
https://exchange.xforce.ibmcloud.com/vulnerabilities/14013

Vulnerability Database

289,599

CVE-2003-1017