exploitDog

CVE-2009-3799

Опубликовано: 08 дек. 2009

Источник: redhat

CVSS2: 6.8

EPSS Средний

Описание

Integer overflow in the Verifier::parseExceptionHandlers function in Adobe Flash Player before 10.0.42.34 and Adobe AIR before 1.5.3 allows remote attackers to execute arbitrary code via an SWF file with a large exception_count value that triggers memory corruption, related to "generation of ActionScript exception handlers."

Ссылки на источники

Дополнительная информация

Статус:

Critical

https://bugzilla.redhat.com/show_bug.cgi?id=543857flash-plugin: multiple code execution flaws (APSB09-19) (CVE-2009-3794, CVE-2009-3796, CVE-2009-3797, CVE-2009-3798, CVE-2009-3799, CVE-2009-3800)

EPSS

Процентиль: 94%

0.12942

Средний

6.8 Medium

CVSS2

Связанные уязвимости

CVE-2009-3799

ubuntu

около 16 лет назад

Integer overflow in the Verifier::parseExceptionHandlers function in Adobe Flash Player before 10.0.42.34 and Adobe AIR before 1.5.3 allows remote attackers to execute arbitrary code via an SWF file with a large exception_count value that triggers memory corruption, related to "generation of ActionScript exception handlers."

CVE-2009-3799

nvd

около 16 лет назад

Integer overflow in the Verifier::parseExceptionHandlers function in Adobe Flash Player before 10.0.42.34 and Adobe AIR before 1.5.3 allows remote attackers to execute arbitrary code via an SWF file with a large exception_count value that triggers memory corruption, related to "generation of ActionScript exception handlers."

GHSA-7vx4-j5mm-h4p8

github

больше 3 лет назад

Integer overflow in the Verifier::parseExceptionHandlers function in Adobe Flash Player before 10.0.42.34 and Adobe AIR before 1.5.3 allows remote attackers to execute arbitrary code via an SWF file with a large exception_count value that triggers memory corruption, related to "generation of ActionScript exception handlers."

EPSS

Процентиль: 94%

0.12942

Средний

6.8 Medium

CVSS2