CVE-2008-4824

Опубликовано: 17 нояб. 2008

Источник: nvd

CVSS2: 9.3

EPSS Средний

Описание

Multiple unspecified vulnerabilities in Adobe Flash Player 10.x before 10.0.12.36 and 9.x before 9.0.151.0 allow remote attackers to execute arbitrary code via unknown vectors related to "input validation errors."

Ссылки

http://lists.apple.com/archives/security-announce//2008//Dec/msg00000.html
Mailing List
Third Party Advisory
http://osvdb.org/49958
Broken Link
http://secunia.com/advisories/32702
Third Party Advisory
http://secunia.com/advisories/32772
Third Party Advisory
http://secunia.com/advisories/33179
Third Party Advisory
http://secunia.com/advisories/33390
Third Party Advisory
http://secunia.com/advisories/34226
Third Party Advisory
http://security.gentoo.org/glsa/glsa-200903-23.xml
Third Party Advisory
http://sunsolve.sun.com/search/document.do?assetkey=1-26-248586-1
Broken Link
http://support.apple.com/kb/HT3338
Third Party Advisory
http://support.avaya.com/elmodocs2/security/ASA-2009-020.htm
Third Party Advisory
http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&DocumentOID=834256&poid=
Broken Link
http://www.adobe.com/support/security/bulletins/apsb08-22.html
Patch
Vendor Advisory
http://www.isecpartners.com/advisories/2008-01-flash.txt
Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2008-0980.html
Third Party Advisory
http://www.securityfocus.com/archive/1/498561/100/0/threaded
Third Party Advisory
VDB Entry
http://www.us-cert.gov/cas/techalerts/TA08-350A.html
Third Party Advisory
US Government Resource
http://www.vupen.com/english/advisories/2008/3189
Third Party Advisory
http://www.vupen.com/english/advisories/2008/3444
Third Party Advisory
http://lists.apple.com/archives/security-announce//2008//Dec/msg00000.html
Mailing List
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*

Версия от 9.0.16.0 (включая) до 9.0.151.0 (исключая)

cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*

Версия от 10 (включая) до 10.0.12.36 (исключая)

EPSS

Процентиль: 97%

0.32697

Средний

9.3 Critical

CVSS2

Дефекты

CWE-20

Связанные уязвимости

CVE-2008-4824

ubuntu

около 17 лет назад

CVE-2008-4824

redhat

около 17 лет назад

GHSA-3qjf-w8wq-4wwh

github

больше 3 лет назад

EPSS

Процентиль: 97%

0.32697

Средний

9.3 Critical

CVSS2

Дефекты

CWE-20