JVN/CVE Demo: Cveinfos

CVE

Id: 13834
CVE No.: CVE-2005-2628
Status: Candidate
Description: Macromedia Flash 6 and 7 (Flash.ocx) allows remote attackers to execute arbitrary code via a SWF file with a modified frame type identifier that is used as an out-of-bounds array index to a function pointer.
Phase: Assigned (20050819)
Votes: None (candidate not yet proposed)
Comments

Actions

Related CVE References

Id	CVE Id	CVE No.	Reference	Actions
101117	13834	CVE-2005-2628	EEYE:EEYEB-20050627B	View
101118	13834	CVE-2005-2628	BUGTRAQ:20051105 [EEYEB-20050627B] Macromedia Flash Player Improper Memory Access Vulnerability	View
101119	13834	CVE-2005-2628	URL:http://www.securityfocus.com/archive/1/archive/1/415789/30/0/threaded	View
101120	13834	CVE-2005-2628	CONFIRM:http://www.macromedia.com/devnet/security/security_zone/mpsb05-07.html	View
101121	13834	CVE-2005-2628	APPLE:APPLE-SA-2006-05-11	View
101122	13834	CVE-2005-2628	URL:http://lists.apple.com/archives/security-announce/2006/May/msg00003.html	View
101123	13834	CVE-2005-2628	GENTOO:GLSA-200511-21	View
101124	13834	CVE-2005-2628	URL:http://www.gentoo.org/security/en/glsa/glsa-200511-21.xml	View
101125	13834	CVE-2005-2628	MS:MS06-020	View
101126	13834	CVE-2005-2628	URL:http://www.microsoft.com/technet/security/bulletin/ms06-020.mspx	View
101127	13834	CVE-2005-2628	REDHAT:RHSA-2005:835	View
101128	13834	CVE-2005-2628	URL:http://www.redhat.com/support/errata/RHSA-2005-835.html	View
101129	13834	CVE-2005-2628	SUSE:SUSE-SR:2005:027	View
101130	13834	CVE-2005-2628	URL:http://www.novell.com/linux/security/advisories/2005_27_sr.html	View
101131	13834	CVE-2005-2628	CERT:TA06-129A	View
101132	13834	CVE-2005-2628	URL:http://www.us-cert.gov/cas/techalerts/TA06-129A.html	View
101133	13834	CVE-2005-2628	CERT:TA06-132A	View
101134	13834	CVE-2005-2628	URL:http://www.us-cert.gov/cas/techalerts/TA06-132A.html	View
101135	13834	CVE-2005-2628	CERT-VN:VU#146284	View
101136	13834	CVE-2005-2628	URL:http://www.kb.cert.org/vuls/id/146284	View
101137	13834	CVE-2005-2628	BID:15332	View
101138	13834	CVE-2005-2628	URL:http://www.securityfocus.com/bid/15332	View
101139	13834	CVE-2005-2628	BID:17951	View
101140	13834	CVE-2005-2628	URL:http://www.securityfocus.com/bid/17951	View
101141	13834	CVE-2005-2628	VUPEN:ADV-2005-2317	View
101142	13834	CVE-2005-2628	URL:http://www.vupen.com/english/advisories/2005/2317	View
101143	13834	CVE-2005-2628	VUPEN:ADV-2006-1744	View
101144	13834	CVE-2005-2628	URL:http://www.vupen.com/english/advisories/2006/1744	View
101145	13834	CVE-2005-2628	VUPEN:ADV-2006-1779	View
101146	13834	CVE-2005-2628	URL:http://www.vupen.com/english/advisories/2006/1779	View
101147	13834	CVE-2005-2628	OSVDB:18825	View
101148	13834	CVE-2005-2628	URL:http://www.osvdb.org/18825	View
101149	13834	CVE-2005-2628	OVAL:oval:org.mitre.oval:def:1557	View
101150	13834	CVE-2005-2628	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1557	View
101151	13834	CVE-2005-2628	OVAL:oval:org.mitre.oval:def:1987	View
101152	13834	CVE-2005-2628	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1987	View
101153	13834	CVE-2005-2628	SECTRACK:1015156	View
101154	13834	CVE-2005-2628	URL:http://securitytracker.com/id?1015156	View
101155	13834	CVE-2005-2628	SECUNIA:17430	View
101156	13834	CVE-2005-2628	URL:http://secunia.com/advisories/17430	View
101157	13834	CVE-2005-2628	SECUNIA:17738	View
101158	13834	CVE-2005-2628	URL:http://secunia.com/advisories/17738	View
101159	13834	CVE-2005-2628	SECUNIA:17481	View
101160	13834	CVE-2005-2628	URL:http://secunia.com/advisories/17481	View
101161	13834	CVE-2005-2628	SECUNIA:17437	View
101162	13834	CVE-2005-2628	URL:http://secunia.com/advisories/17437/	View
101163	13834	CVE-2005-2628	SECUNIA:17626	View
101164	13834	CVE-2005-2628	URL:http://secunia.com/advisories/17626/	View
101165	13834	CVE-2005-2628	SECUNIA:20077	View
101166	13834	CVE-2005-2628	URL:http://secunia.com/advisories/20077	View
101167	13834	CVE-2005-2628	SECUNIA:20045	View
101168	13834	CVE-2005-2628	URL:http://secunia.com/advisories/20045	View
101169	13834	CVE-2005-2628	XF:flashplayer-swf-execute-code(22959)	View

Related JVN

Id	JVN No.	Title	Summary	CVE No.	CVE Id	CVSS_v2	CVSS_v3	JVN URL	Actions
62470	JVNDB-2005-000672	RealNetworks 製品の DUNZIP32.DLL におけるヒープオーバーフローの脆弱性	------------	CVE-2005-2630	13834	5.1		http://jvndb.jvn.jp/ja/contents/2005/JVNDB-2005-000672.html	View

Message	Memory use
Component initialization	1.39 MB
Controller action start	1.49 MB
Controller render start	2.32 MB
View render complete	2.81 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	2.91
Event: Controller.initialize	0.03
Event: Controller.startup	0.07
Controller action	397.50
Event: Controller.beforeRender	4.39
» Processing toolbar data	4.29
Rendering View	16.40
» Event: View.beforeRender	0.02
» Rendering APP/View/Cveinfos/view.ctp	15.41
» Event: View.afterRender	0.02
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	0.54
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	0.09
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/cveinfos/view/13834
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/cveinfos/view/13834
Remote Port	1201
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	216.73.216.148
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Connection	close
Http Cache Control	max-age=259200
Http X Forwarded For	10.1.78.197
Http Via	1.1 squid-proxy-5b5d847c96-v2jzj (squid/6.10)
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Suspectharddos	1
Suspectdos	1
X Dostranslated Ip	216.73.216.148
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	216.73.216.148
Unique Id	aFJ6dwl0GDR-W2b3X8IGxwAAAb8
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Suspectharddos	1
Redirect Suspectdos	1
Redirect X Dostranslated Ip	216.73.216.148
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	216.73.216.148
Redirect Unique Id	aFJ6dwl0GDR-W2b3X8IGxwAAAb8
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect Suspectharddos	1
Redirect Redirect Suspectdos	1
Redirect Redirect X Dostranslated Ip	216.73.216.148
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	216.73.216.148
Redirect Redirect Unique Id	aFJ6dwl0GDR-W2b3X8IGxwAAAb8
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1750235767.4561
Request Time	1750235767

CVE

Actions

Related CVE References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files