This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Summuary | |
|---|---|
| CPE Name | cpe:/a:adobe:flash_player |
| Detail | |||
|---|---|---|---|
| Vendor | Adobe | First view | 2005-12-31 |
| Product | Flash Player | Last view | 2010-08-11 |
| Version | Type | Application | |
| Edition | |||
| Language | |||
| Update | |||
| CPE Product | cpe:/a:adobe:flash_player | ||
Activity : Yearly
Related : CVE
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 9.3 | 2010-08-11 | CVE-2010-2216 | Network | Medium | None Requ... | |
| 4.3 | 2010-08-11 | CVE-2010-2215 | Network | Medium | None Requ... | |
| 9.3 | 2010-08-11 | CVE-2010-2214 | Network | Medium | None Requ... | |
| 9.3 | 2010-08-11 | CVE-2010-2213 | Network | Medium | None Requ... | |
| 9.3 | 2010-08-11 | CVE-2010-0209 | Network | Medium | None Requ... | |
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 4.3 | 2008-08-29 | CVE-2008-3873 | Network | Medium | None Requ... | |
| 4.3 | 2008-04-02 | CVE-2008-1654 | Network | Medium | None Requ... | |
| 7.2 | 2005-12-31 | CVE-2005-4708 | Local | Low | None Requ... |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 80% (4) | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
| 20% (1) | CWE-352 | Cross-Site Request Forgery (CSRF) |
Oval Markup Language : Definitions
| OvalID | Name |
|---|---|
| oval:org.mitre.oval:def:11435 | Interaction error between Adobe Flash and multiple Universal Plug and Play (U... |
| oval:org.mitre.oval:def:16106 | Adobe Flash Player and AIR Unspecified Memory Corruption Vulnerability |
| oval:org.mitre.oval:def:11461 | Adobe Flash Player and AIR Unspecified Memory Corruption Vulnerability |
| oval:org.mitre.oval:def:16020 | Adobe Flash Player and AIR Unspecified Multiple Memory Corruption Vulnerabili... |
| oval:org.mitre.oval:def:10983 | Adobe Flash Player and AIR Unspecified Multiple Memory Corruption Vulnerabili... |
| id | Name |
|---|---|
| oval:org.mitre.oval:def:15966 | Adobe Flash Player and AIR Unspecified Memory Corruption Vulnerability |
| oval:org.mitre.oval:def:11971 | Adobe Flash Player and AIR Unspecified Memory Corruption Vulnerability |
| oval:org.mitre.oval:def:16192 | Adobe Flash Player and AIR Unspecified Click-jacking Vulnerability |
| oval:org.mitre.oval:def:11532 | Adobe Flash Player and AIR Unspecified Click-jacking Vulnerability |
| oval:org.mitre.oval:def:16177 | Adobe Flash Player and AIR Unspecified Memory Corruption Vulnerability |
| oval:org.mitre.oval:def:11977 | Adobe Flash Player and AIR Unspecified Memory Corruption Vulnerability |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 67062 | Adobe Flash Player Unspecified Memory Corruption (2010-2213) |
| 67061 | Adobe Flash Player Unspecified Memory Corruption (2010-2214) |
| 67060 | Adobe Flash Player Unspecified Clickjacking (2010-2215) |
| 67059 | Adobe Flash Player Multiple Unspecified Memory Corruption (2010-2216) |
| 67057 | Adobe Flash Player ActionScript AVM1 ActionPush Command Arbitrary Code Execution |
| id | Description |
|---|---|
| 48049 | Adobe Flash Player System.setClipboard Method Remote Clipboard Hijack |
| 44279 | Adobe Flash UPnP navigateToURL Function SOAP Message CSRF |
| 22916 | Macromedia Multiple Products Licensing Service Path Subversion Local Privileg... |
| 17248 | Macromedia Multiple Products eLicensing Client Local Privilege Escalation |
