Vulnerability Database

296,335

Total vulnerabilities in the database

CVE-2008-1834

swfdec_load_object.c in Swfdec before 0.6.4 does not properly restrict local file access from untrusted sandboxes, which allows remote attackers to read arbitrary files via a crafted Flash file.

  • Published: Apr 16, 2008
  • Updated: Apr 13, 2023
  • CVE: CVE-2008-1834
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 4.3
  • AV:N/AC:M/Au:N/C:P/I:N/A:N

CWEs:

Software From Fixed in
swfdec / swfdec 0.4.2 0.4.2.x
swfdec / swfdec 0.5.4 0.5.4.x
swfdec / swfdec - 0.6.2.x
swfdec / swfdec 0.5.2 0.5.2.x
swfdec / swfdec 0.6.0 0.6.0.x
swfdec / swfdec 0.5.5 0.5.5.x
swfdec / swfdec 0.4.4 0.4.4.x
swfdec / swfdec 0.4.1 0.4.1.x
swfdec / swfdec 0.4.5 0.4.5.x
swfdec / swfdec 0.5.1 0.5.1.x
swfdec / swfdec 0.4.3 0.4.3.x
swfdec / swfdec 0.4.0 0.4.0.x
swfdec / swfdec 0.5.3 0.5.3.x
swfdec / swfdec 0.5.90 0.5.90.x
swfdec / swfdec 0.5.0 0.5.0.x