CVE-2009-1860

Опубликовано: 25 июн. 2009

Источник: nvd

CVSS2: 9.3

EPSS Низкий

Описание

Unspecified vulnerability in Adobe Shockwave Player before 11.5.0.600 allows remote attackers to execute arbitrary code via crafted Shockwave Player 10 content.

Ссылки

http://secunia.com/advisories/35544
Vendor Advisory
http://www.adobe.com/support/security/bulletins/apsb09-08.html
Patch
Vendor Advisory
http://www.securityfocus.com/bid/35469
http://www.securitytracker.com/id?1022440
http://secunia.com/advisories/35544
Vendor Advisory
http://www.adobe.com/support/security/bulletins/apsb09-08.html
Patch
Vendor Advisory
http://www.securityfocus.com/bid/35469
http://www.securitytracker.com/id?1022440

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:adobe:shockwave_player:*:*:*:*:*:*:*:*

Версия до 11.5.0.596 (включая)

cpe:2.3:a:adobe:shockwave_player:1.0:*:*:*:*:*:*:*

cpe:2.3:a:adobe:shockwave_player:2.0:*:*:*:*:*:*:*

cpe:2.3:a:adobe:shockwave_player:3.0:*:*:*:*:*:*:*

cpe:2.3:a:adobe:shockwave_player:4.0:*:*:*:*:*:*:*

cpe:2.3:a:adobe:shockwave_player:5.0:*:*:*:*:*:*:*

cpe:2.3:a:adobe:shockwave_player:6.0:*:*:*:*:*:*:*

cpe:2.3:a:adobe:shockwave_player:8.0:*:*:*:*:*:*:*

cpe:2.3:a:adobe:shockwave_player:8.5.1:*:*:*:*:*:*:*

cpe:2.3:a:adobe:shockwave_player:9:*:*:*:*:*:*:*

cpe:2.3:a:adobe:shockwave_player:10.1.0.11:*:*:*:*:*:*:*

cpe:2.3:a:adobe:shockwave_player:11.5.0.595:*:*:*:*:*:*:*

EPSS

Процентиль: 91%

0.06947

Низкий

9.3 Critical

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-53hq-292w-c5q5

github

почти 4 года назад