10 - GLSA-200903-23

Executive Summary

This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.

Summary
Title	Adobe Flash Player: Multiple vulnerabilities

Informations
Name	GLSA-200903-23	First vendor Publication	2009-03-10
Vendor	Gentoo	Last vendor Modification	2009-03-10
Severity (Vendor)	Normal	Revision	N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C)
Cvss Base Score	10	Attack Range	Network
Cvss Impact Score	10	Attack Complexity	Low
Cvss Expoit Score	10	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Synopsis

Multiple vulnerabilities have been identified, the worst of which allow arbitrary code execution on a user's system via a malicious Flash file.

Background

The Adobe Flash Player is a renderer for the popular SWF file format, which is commonly used to provide interactive websites, digital experiences and mobile content.

Description

Multiple vulnerabilities have been discovered in Adobe Flash Player:

* The access scope of SystemsetClipboard() allows ActionScript programs to execute the method without user interaction (CVE-2008-3873).

* The access scope of FileReference.browse() and FileReference.download() allows ActionScript programs to execute the methods without user interaction (CVE-2008-4401).

* The Settings Manager controls can be disguised as normal graphical elements. This so-called "clickjacking" vulnerability was disclosed by Robert Hansen of SecTheory, Jeremiah Grossman of WhiteHat Security, Eduardo Vela, Matthew Mastracci of DotSpots, and Liu Die Yu of TopsecTianRongXin (CVE-2008-4503).

* Matthew Dempsky reported a null-pointer dereference flaw when loading two SWF files compiled with different Flash versions from the same URI (CVE-2008-4546).

* Adan Barth (UC Berkely) and Collin Jackson (Stanford University)
discovered a flaw occurring when interpreting HTTP response headers (CVE-2008-4818).

* Nathan McFeters and Rob Carter of Ernst and Young's Advanced Security Center are credited for finding an unspecified vulnerability facilitating DNS rebinding attacks (CVE-2008-4819).

* When used in a Mozilla browser, Adobe Flash Player does not properly interpret jar: URLs, according to a report by Gregory Fleischer of pseudo-flaw.net (CVE-2008-4821).

* Alex "kuza55" K. reported that Adobe Flash Player does not properly interpret policy files (CVE-2008-4822).

* The vendor credits Stefano Di Paola of Minded Security for reporting that an ActionScript attribute is not interpreted properly (CVE-2008-4823).

* Riley Hassell and Josh Zelonis of iSEC Partners reported multiple input validation errors (CVE-2008-4824).

* The aforementioned researchers also reported that ActionScript 2
does not verify a member element's size when performing several known and other unspecified actions, that DefineConstantPool accepts an untrusted input value for a "constant count" and that character elements are not validated when retrieved from a data structure,
possibly resulting in a null-pointer dereference (CVE-2008-5361,
CVE-2008-5362, CVE-2008-5363).

* The vendor reported an unspecified arbitrary code execution vulnerability (CVE-2008-5499).

* Liu Die Yu of TopsecTianRongXin reported an unspecified flaw in the Settings Manager related to "clickjacking" (CVE-2009-0114).

* The vendor credits Roee Hay from IBM Rational Application Security for reporting an input validation error when processing SWF files (CVE-2009-0519).

* Javier Vicente Vallejo reported via the iDefense VCP that Adobe Flash does not remove object references properly, leading to a freed memory dereference (CVE-2009-0520).

* Josh Bressers of Red Hat and Tavis Ormandy of the Google Security Team reported an untrusted search path vulnerability (CVE-2009-0521).

Impact

A remote attacker could entice a user to open a specially crafted SWF file, possibly resulting in the execution of arbitrary code with the privileges of the user or a Denial of Service (crash). Furthermore a remote attacker could gain access to sensitive information, disclose memory contents by enticing a user to open a specially crafted PDF file inside a Flash application, modify the victim's clipboard or render it temporarily unusable, persuade a user into uploading or downloading files, bypass security restrictions with the assistance of the user to gain access to camera and microphone, conduct Cross-Site Scripting and HTTP Header Splitting attacks, bypass the "non-root domain policy" of Flash, and gain escalated privileges.

Workaround

There is no known workaround at this time.

Resolution

All Adobe Flash Player users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=net-www/netscape-flash-10.0.22.87"

References

[ 1 ] CVE-2008-3873 : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3873
[ 2 ] CVE-2008-4401 : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4401
[ 3 ] CVE-2008-4503 : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4503
[ 4 ] CVE-2008-4546 : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4546
[ 5 ] CVE-2008-4818 : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4818
[ 6 ] CVE-2008-4819 : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4819
[ 7 ] CVE-2008-4821 : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4821
[ 8 ] CVE-2008-4822 : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4822
[ 9 ] CVE-2008-4823 : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4823
[ 10 ] CVE-2008-4824 : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4824
[ 11 ] CVE-2008-5361 : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5361
[ 12 ] CVE-2008-5362 : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5362
[ 13 ] CVE-2008-5363 : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5363
[ 14 ] CVE-2008-5499 : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5499
[ 15 ] CVE-2009-0114 : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0114
[ 16 ] CVE-2009-0519 : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0519
[ 17 ] CVE-2009-0520 : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0520
[ 18 ] CVE-2009-0521 : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0521

Availability

This GLSA and any updates to it are available for viewing at the Gentoo Security Website:

http://security.gentoo.org/glsa/glsa-200903-23.xml

Original Source

Url : http://security.gentoo.org/glsa/glsa-200903-23.xml

CWE : Common Weakness Enumeration

%	Id	Name
21 %	CWE-399	Resource Management Errors
21 %	CWE-20	Improper Input Validation
14 %	CWE-264	Permissions, Privileges, and Access Controls
14 %	CWE-200	Information Exposure
14 %	CWE-79	Failure to Preserve Web Page Structure ('Cross-site Scripting') (CWE/SANS Top 25)
7 %	CWE-119	Failure to Constrain Operations within the Bounds of a Memory Buffer
7 %	CWE-94	Failure to Control Generation of Code ('Code Injection')

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:15837

Oval ID:	oval:org.mitre.oval:def:15837
Title:	Adobe Flash Player Unspecified Remote Denial of Service Vulnerability
Description:	Unspecified vulnerability in Adobe Flash Player 9.x before 9.0.159.0 and 10.x before 10.0.22.87 allows remote attackers to cause a denial of service (browser crash) or possibly execute arbitrary code via a crafted Shockwave Flash (aka .swf) file.
Family:	macos	Class:	vulnerability
Reference(s):	CVE-2009-0519	Version:	3
Platform(s):	Apple Mac OS X	Product(s):	Adobe Flash Player
Definition Synopsis:
Adobe Flash Player is Installed AND Flash version is before 9.0.159.0 or 10.x before 10.0.22.87 Version of Adobe Flash Player is less than 9.0.159.0 OR Adobe Flash Player 10.x before 10.0.22.87 installed Adobe Flash Player 10 is Installed AND Version of Adobe Flash Player is less than 10.0.22.87

Definition Id: oval:org.mitre.oval:def:16057

Oval ID:	oval:org.mitre.oval:def:16057
Title:	Adobe Flash Player Invalid Object Reference Remote Code Execution
Description:	Adobe Flash Player 9.x before 9.0.159.0 and 10.x before 10.0.22.87 does not properly remove references to destroyed objects during Shockwave Flash file processing, which allows remote attackers to execute arbitrary code via a crafted file, related to a "buffer overflow issue."
Family:	macos	Class:	vulnerability
Reference(s):	CVE-2009-0520	Version:	3
Platform(s):	Apple Mac OS X	Product(s):	Adobe Flash Player
Definition Synopsis:
Adobe Flash Player is Installed AND Flash version is before 9.0.159.0 or 10.x before 10.0.22.87 Version of Adobe Flash Player is less than 9.0.159.0 OR Adobe Flash Player 10.x before 10.0.22.87 installed Adobe Flash Player 10 is Installed AND Version of Adobe Flash Player is less than 10.0.22.87

Definition Id: oval:org.mitre.oval:def:16302

Oval ID:	oval:org.mitre.oval:def:16302
Title:	Adobe Flash Player SWF Version Null Pointer Dereference Denial of Service Vulnerability
Description:	Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows remote web servers to cause a denial of service (NULL pointer dereference and browser crash) by returning a different response when an HTTP request is sent a second time, as demonstrated by two responses that provide SWF files with different SWF version numbers.
Family:	macos	Class:	vulnerability
Reference(s):	CVE-2008-4546	Version:	3
Platform(s):	Apple Mac OS X	Product(s):	Adobe Flash Player Adobe AIR
Definition Synopsis:
Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64 installed Adobe Flash Player is Installed AND Flash version is before 9.0.277.0 or 10.x before 10.1.53.64 Version of Adobe Flash Player is less than 9.0.277.0 OR Adobe Flash Player 10.x before 10.1.53.64 installed Adobe Flash Player 10 is Installed AND Version of Adobe Flash Player is less than 10.1.53.64 OR Adobe AIR before 2.0.2.12610 is installed Adobe AIR is installed AND Version of Adobe AIR is less than 2.0.2.12610

Definition Id: oval:org.mitre.oval:def:16419

Oval ID:	oval:org.mitre.oval:def:16419
Title:	Adobe Flash Player Settings Manager May Let Remote Users Conduct Clickjacking Attacks
Description:	Unspecified vulnerability in the Settings Manager in Adobe Flash Player 9.x before 9.0.159.0 and 10.x before 10.0.22.87, and possibly other versions, allows remote attackers to trick a user into visiting an arbitrary URL via unknown vectors, related to "a potential Clickjacking issue variant."
Family:	macos	Class:	vulnerability
Reference(s):	CVE-2009-0114	Version:	3
Platform(s):	Apple Mac OS X	Product(s):	Adobe Flash Player
Definition Synopsis:
Adobe Flash Player is Installed AND Flash version is before 9.0.159.0 or 10.x before 10.0.22.87 Version of Adobe Flash Player is less than 9.0.159.0 OR Adobe Flash Player 10.x before 10.0.22.87 installed Adobe Flash Player 10 is Installed AND Version of Adobe Flash Player is less than 10.0.22.87

Definition Id: oval:org.mitre.oval:def:22243

Oval ID:	oval:org.mitre.oval:def:22243
Title:	ELSA-2009:0332: flash-plugin security update (Critical)
Description:	Untrusted search path vulnerability in Adobe Flash Player 9.x before 9.0.159.0 and 10.x before 10.0.22.87 on Linux allows local users to obtain sensitive information or gain privileges via a crafted library in a directory contained in the RPATH.
Family:	unix	Class:	patch
Reference(s):	ELSA-2009:0332-01 CVE-2009-0519 CVE-2009-0520 CVE-2009-0521	Version:	17
Platform(s):	Oracle Linux 5	Product(s):	flash-plugin
Definition Synopsis:
Oracle Linux 5.x AND flash-plugin is earlier than 0:10.0.22.87-1.el5

Definition Id: oval:org.mitre.oval:def:22605

Oval ID:	oval:org.mitre.oval:def:22605
Title:	ELSA-2008:1047: flash-plugin security update (Critical)
Description:	Unspecified vulnerability in Adobe Flash Player for Linux 10.0.12.36, and 9.0.151.0 and earlier, allows remote attackers to execute arbitrary code via a crafted SWF file.
Family:	unix	Class:	patch
Reference(s):	ELSA-2008:1047-01 CVE-2008-5499	Version:	6
Platform(s):	Oracle Linux 5	Product(s):	flash-plugin
Definition Synopsis:
Oracle Linux 5.x AND flash-plugin is earlier than 0:10.0.15.3-2.el5

Definition Id: oval:org.mitre.oval:def:22730

Oval ID:	oval:org.mitre.oval:def:22730
Title:	ELSA-2008:0945: flash-plugin security update (Critical)
Description:	The ActionScript 2 virtual machine in Adobe Flash Player 10.x before 10.0.12.36 and 9.x before 9.0.151.0, and Adobe AIR before 1.5, does not validate character elements during retrieval from the dictionary data structure, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PDF file.
Family:	unix	Class:	patch
Reference(s):	ELSA-2008:0945-02 CVE-2007-4324 CVE-2007-6243 CVE-2008-3873 CVE-2008-4401 CVE-2008-4503 CVE-2008-4818 CVE-2008-4819 CVE-2008-4821 CVE-2008-4822 CVE-2008-4823 CVE-2008-4824 CVE-2008-5361 CVE-2008-5362 CVE-2008-5363	Version:	61
Platform(s):	Oracle Linux 5	Product(s):	flash-plugin
Definition Synopsis:
Oracle Linux 5.x AND flash-plugin is earlier than 0:10.0.12.36-2.el5

Definition Id: oval:org.mitre.oval:def:6160

Oval ID:	oval:org.mitre.oval:def:6160
Title:	DEPRECATED: Adobe Flash Player unspecified information disclosure
Description:	Untrusted search path vulnerability in Adobe Flash Player 9.x before 9.0.159.0 and 10.x before 10.0.22.87 on Linux allows local users to obtain sensitive information or gain privileges via a crafted library in a directory contained in the RPATH.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2009-0521	Version:	8
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7	Product(s):	Adobe Flash Player
Definition Synopsis:
Adobe Flash Player is installed AND Adobe Flash Player version installed on the system is less than 9.0.159.0 OR Adobe Flash Player version installed on the system is greater than or equal to 10.0 AND Adobe Flash Player version installed on the system is less than 10.0.22.87

Definition Id: oval:org.mitre.oval:def:6470

Oval ID:	oval:org.mitre.oval:def:6470
Title:	Adobe Flash Player Unspecified Remote Denial of Service Vulnerability
Description:	Unspecified vulnerability in Adobe Flash Player 9.x before 9.0.159.0 and 10.x before 10.0.22.87 allows remote attackers to cause a denial of service (browser crash) or possibly execute arbitrary code via a crafted Shockwave Flash (aka .swf) file.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2009-0519	Version:	12
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7	Product(s):	Adobe Flash Player Adobe AIR
Definition Synopsis:
Adobe Flash Player section Adobe Flash Player is installed AND Vulnerable version of Adobe Flash Player Adobe Flash Player version installed on the system is less than 9.0.159.0 OR Vulnerable version of Adobe Flash Player 10 Adobe Flash Player version installed on the system is greater than or equal 10.0 AND Adobe Flash Player version installed on the system is less than 10.0.22.87 OR Flash.ocx section Determine if the version of Flash.ocx is less than 9.0.159.0 OR Vulnerable version of Flash.ocx Determine if the version of Flash.ocx is greater than or equal 10.0 AND Determine if the version of Flash.ocx is less than 10.0.22.87 AND Adobe AIR section Adobe AIR is installed AND Check if the version of Adobe AIR is less than or equal 1.5

Definition Id: oval:org.mitre.oval:def:6593

Oval ID:	oval:org.mitre.oval:def:6593
Title:	Adobe Flash Player Invalid Object Reference Remote Code Execution
Description:	Adobe Flash Player 9.x before 9.0.159.0 and 10.x before 10.0.22.87 does not properly remove references to destroyed objects during Shockwave Flash file processing, which allows remote attackers to execute arbitrary code via a crafted file, related to a "buffer overflow issue."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2009-0520	Version:	12
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7	Product(s):	Adobe Flash Player Adobe AIR
Definition Synopsis:
Adobe Flash Player section Adobe Flash Player is installed AND Vulnerable version of Adobe Flash Player Adobe Flash Player version installed on the system is less than 9.0.159.0 OR Vulnerable version of Adobe Flash Player 10 Adobe Flash Player version installed on the system is greater than or equal 10.0 AND Adobe Flash Player version installed on the system is less than 10.0.22.87 OR Flash.ocx section Determine if the version of Flash.ocx is less than 9.0.159.0 OR Vulnerable version of Flash.ocx Determine if the version of Flash.ocx is greater than or equal 10.0 AND Determine if the version of Flash.ocx is less than 10.0.22.87 AND Adobe AIR section Adobe AIR is installed AND Check if the version of Adobe AIR is less than or equal 1.5

Definition Id: oval:org.mitre.oval:def:6662

Oval ID:	oval:org.mitre.oval:def:6662
Title:	Adobe Flash Player Settings Manager May Let Remote Users Conduct Clickjacking Attacks
Description:	Unspecified vulnerability in the Settings Manager in Adobe Flash Player 9.x before 9.0.159.0 and 10.x before 10.0.22.87, and possibly other versions, allows remote attackers to trick a user into visiting an arbitrary URL via unknown vectors, related to "a potential Clickjacking issue variant."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2009-0114	Version:	12
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7	Product(s):	Adobe Flash Player Adobe AIR
Definition Synopsis:
Adobe Flash Player section Adobe Flash Player is installed AND Vulnerable version of Adobe Flash Player Adobe Flash Player version installed on the system is less than 9.0.159.0 OR Vulnerable version of Adobe Flash Player 10 Adobe Flash Player version installed on the system is greater than or equal 10.0 AND Adobe Flash Player version installed on the system is less than 10.0.22.87 OR Flash.ocx section Determine if the version of Flash.ocx is less than 9.0.159.0 OR Vulnerable version of Flash.ocx Determine if the version of Flash.ocx is greater than or equal 10.0 AND Determine if the version of Flash.ocx is less than 10.0.22.87 AND Adobe AIR section Adobe AIR is installed AND Check if the version of Adobe AIR is less than or equal 1.5

Definition Id: oval:org.mitre.oval:def:7187

Oval ID:	oval:org.mitre.oval:def:7187
Title:	Adobe Flash Player SWF Version Null Pointer Dereference Denial of Service Vulnerability
Description:	Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows remote web servers to cause a denial of service (NULL pointer dereference and browser crash) by returning a different response when an HTTP request is sent a second time, as demonstrated by two responses that provide SWF files with different SWF version numbers.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2008-4546	Version:	18
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2	Product(s):	Adobe Flash Player Adobe AIR
Definition Synopsis:
Vulnerable version of Adobe AIR Adobe AIR is installed AND Check if Adobe AIR version is less than or equal 1.5.3.9130 OR Vulnerable version of Adobe Flash Player Adobe Flash Player before 9.0.277.0 installed Adobe Flash Player is installed AND Adobe Flash Player version installed on the system is less than 9.0.277.0 OR Adobe Flash Player 10.x through 10.0.45.2 installed Adobe Flash Player 10 is installed AND Adobe Flash Player version installed on the system is less than or equal 10.0.45.2 OR Flash.ocx section ActiveX Control is installed AND Flash.ocx versions section Flash.ocx 10 section Determine if the version of Flash.ocx is less than or equal 10.0.45.2 AND Determine if the version of Flash.ocx is greater than or equal 10.0 OR Flash.ocx 9 section Determine if the version of Flash.ocx is less than 9.0.277.0 AND Determine if the version of Flash.ocx is greater than or equal 9.0

CPE : Common Platform Enumeration

Type	Description	Count
Application	Adobe Air cpe:2.3:a:adobe:air:1.5:::::::* cpe:2.3:a:adobe:air:1.1:::::::* cpe:2.3:a:adobe:air:1.01:::::::* cpe:2.3:a:adobe:air:1.0:::::::* cpe:2.3:a:adobe:air::::::::	5
Application	Adobe Flash Player cpe:2.3:a:adobe:flash_player:10.0.2.54:::::::* cpe:2.3:a:adobe:flash_player:10.0.12.36:::::::* cpe:2.3:a:adobe:flash_player:10.0.12.10:::::::* cpe:2.3:a:adobe:flash_player:10.0.0.584:::::::* cpe:2.3:a:adobe:flash_player:10:::::::* cpe:2.3:a:adobe:flash_player:9.125.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.9.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.8.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.48.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.47.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.45.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.31.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.31:::::::* cpe:2.3:a:adobe:flash_player:9.0.283.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.280:::::::* cpe:2.3:a:adobe:flash_player:9.0.28.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.28.0::mac_os_x::::: cpe:2.3:a:adobe:flash_player:9.0.28:::::::* cpe:2.3:a:adobe:flash_player:9.0.277.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.262.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.260.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.246.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.20.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.20:::::::* cpe:2.3:a:adobe:flash_player:9.0.18d60:::::::* cpe:2.3:a:adobe:flash_player:9.0.16.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.16:::::::* cpe:2.3:a:adobe:flash_player:9.0.16::windows::::: cpe:2.3:a:adobe:flash_player:9.0.159.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.155.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.152.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.151.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.125.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.124.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.115.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.114.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.112.0:::::::* cpe:2.3:a:adobe:flash_player:9.0:::::::* cpe:2.3:a:adobe:flash_player:8.0.42.0:::::::* cpe:2.3:a:adobe:flash_player:8.0.39.0:::::::* cpe:2.3:a:adobe:flash_player:8.0.35.0:::::::* cpe:2.3:a:adobe:flash_player:8.0.34.0:::::::* cpe:2.3:a:adobe:flash_player:8.0.33.0:::::::* cpe:2.3:a:adobe:flash_player:8.0.24.0:::::::* cpe:2.3:a:adobe:flash_player:8.0.22.0:::::::* cpe:2.3:a:adobe:flash_player:8.0:::::::* cpe:2.3:a:adobe:flash_player:8.0::pro::::: cpe:2.3:a:adobe:flash_player:8.0::basic::::: cpe:2.3:a:adobe:flash_player:8::professional::::: cpe:2.3:a:adobe:flash_player:8::pro::::: cpe:2.3:a:adobe:flash_player:7.2:::::::* cpe:2.3:a:adobe:flash_player:7.1.1:::::::* cpe:2.3:a:adobe:flash_player:7.1:::::::* cpe:2.3:a:adobe:flash_player:7.0.73.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.70.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.69.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.68.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.67.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.66.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.63:::::::* cpe:2.3:a:adobe:flash_player:7.0.63::linux::::: cpe:2.3:a:adobe:flash_player:7.0.61.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.60.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.53.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.25:::::::* cpe:2.3:a:adobe:flash_player:7.0.24.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.19.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.14.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.1:::::::* cpe:2.3:a:adobe:flash_player:7.0_r67::solaris::::: cpe:2.3:a:adobe:flash_player:7.0_r67:::::::* cpe:2.3:a:adobe:flash_player:7.0:::::::* cpe:2.3:a:adobe:flash_player:6.0.79:::::::* cpe:2.3:a:adobe:flash_player:6.0.21.0:::::::* cpe:2.3:a:adobe:flash_player:6:::::::* cpe:2.3:a:adobe:flash_player:5:::::::* cpe:2.3:a:adobe:flash_player:4:::::::* cpe:2.3:a:adobe:flash_player:3:::::::* cpe:2.3:a:adobe:flash_player:2:::::::* cpe:2.3:a:adobe:flash_player:mx_2004:::::::* cpe:2.3:a:adobe:flash_player:cs4::pro::::: cpe:2.3:a:adobe:flash_player:cs3::pro::::: cpe:2.3:a:adobe:flash_player:cs3::professional::::: cpe:2.3:a:adobe:flash_player:::::::: cpe:2.3:a:adobe:flash_player:::basic:::::* cpe:2.3:a:adobe:flash_player:::pro:::::* cpe:2.3:a:adobe:flash_player::::::edge::* cpe:2.3:a:adobe:flash_player::::::internet_explorer_11::* cpe:2.3:a:adobe:flash_player::::::chrome::* cpe:2.3:a:adobe:flash_player:-:::::::*	90
Application	Adobe Flash Player For Linux cpe:2.3:a:adobe:flash_player_for_linux:10.0.15.3:::::::* cpe:2.3:a:adobe:flash_player_for_linux:10.0.12.36:::::::* cpe:2.3:a:adobe:flash_player_for_linux:9.0.48.0:::::::* cpe:2.3:a:adobe:flash_player_for_linux:9.0.31:::::::* cpe:2.3:a:adobe:flash_player_for_linux:9.0.151.0:::::::* cpe:2.3:a:adobe:flash_player_for_linux:9.0.124.0:::::::* cpe:2.3:a:adobe:flash_player_for_linux:9.0.115.0:::::::*	7
Application	Adobe Flex cpe:2.3:a:adobe:flex:3.0:::::::*	1

SAINT Exploits

Description	Link
Adobe Flash Player ActionScript launch command execution	More info here

ExploitDB Exploits

id	Description
2012-04-20	Adobe Flash Player ActionScript Launch Command Execution Vulnerability

OpenVAS Exploits

Date	Description
2011-09-07	Name : Mac OS X v10.6.4 Multiple Vulnerabilities (2010-007) File : nvt/gb_macosx_su10-007.nasl
2011-03-09	Name : Gentoo Security Advisory GLSA 201101-09 (adobe-flash) File : nvt/glsa_201101_09.nasl
2010-07-06	Name : FreeBSD Ports: linux-flashplugin File : nvt/freebsd_linux-flashplugin8.nasl
2010-06-23	Name : SuSE Update for flash-player SUSE-SA:2010:024 File : nvt/gb_suse_2010_024.nasl
2010-06-22	Name : Adobe Flash Player/Air Multiple Vulnerabilities - June10 (Win) File : nvt/secpod_adobe_prdts_mult_vuln_jun10_win.nasl
2010-06-22	Name : Adobe Flash Player/Air Multiple Vulnerabilities - June10 (Linux) File : nvt/secpod_adobe_prdts_mult_vuln_jun10_lin.nasl
2010-05-12	Name : Mac OS X 10.5.7 Update / Mac OS X Security Update 2009-002 File : nvt/macosx_upd_10_5_7_secupd_2009-002.nasl
2009-11-17	Name : Mac OS X Version File : nvt/macosx_version.nasl
2009-08-17	Name : SuSE Security Advisory SUSE-SA:2009:041 (flash-player) File : nvt/suse_sa_2009_041.nasl
2009-06-05	Name : Ubuntu USN-723-1 (git-core) File : nvt/ubuntu_723_1.nasl
2009-03-13	Name : Ubuntu USN-732-1 (dash) File : nvt/ubuntu_732_1.nasl
2009-03-13	Name : Gentoo Security Advisory GLSA 200903-23 (netscape-flash) File : nvt/glsa_200903_23.nasl
2009-03-13	Name : Ubuntu USN-731-1 (apache2) File : nvt/ubuntu_731_1.nasl
2009-03-10	Name : Adobe Flash Player Multiple Vulnerabilities - Mar09 (Win) File : nvt/gb_adobe_flash_player_mult_vuln_mar09_win.nasl
2009-03-10	Name : Adobe Flash Player Multiple Vulnerabilities - Mar09 (Linux) File : nvt/gb_adobe_flash_player_mult_vuln_mar09_lin.nasl
2009-03-02	Name : SuSE Security Advisory SUSE-SA:2009:011 (flash-player) File : nvt/suse_sa_2009_011.nasl
2009-03-02	Name : RedHat Security Advisory RHSA-2009:0334 File : nvt/RHSA_2009_0334.nasl
2009-03-02	Name : RedHat Security Advisory RHSA-2009:0332 File : nvt/RHSA_2009_0332.nasl
2009-01-23	Name : SuSE Update for flash-player SUSE-SA:2008:059 File : nvt/gb_suse_2008_059.nasl
2008-12-19	Name : Adobe Flash Player for Linux SWF Processing Vulnerability File : nvt/gb_adobe_flash_player_swf_proc_vuln.nasl
2008-11-12	Name : Adobe Flash Player Multiple Vulnerabilities - Nov08 (Win) File : nvt/gb_adobe_flash_player_mult_vuln_nov08_win.nasl
2008-11-12	Name : Adobe Flash Player Multiple Vulnerabilities - Nov08 (Linux) File : nvt/gb_adobe_flash_player_mult_vuln_nov08_lin.nasl
2008-11-01	Name : FreeBSD Ports: linux-flashplugin File : nvt/freebsd_linux-flashplugin4.nasl
2008-10-16	Name : Adobe Flash Player Multiple Security Bypass Vulnerabilities (Win) File : nvt/gb_adobe_flash_player_sec_bypass_vuln_win.nasl
2008-10-16	Name : Adobe Flash Player Multiple Security Bypass Vulnerabilities (Linux) File : nvt/gb_adobe_flash_player_sec_bypass_vuln_lin.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
53097	Adobe Multiple Product ActionScript 2 VM Dictionary Data Structure Character ...
52917	Adobe Flash Player ActionScript 2 VM DefineConstantPool Action Crafted PDF Fi...
52749	Adobe Flash Player Settings Manager Unspecified Clickjacking
52748	Adobe Flash Player Crafted SWF File Handling Arbitrary Code Execution
52747	Adobe Flash Player Shockwave Flash File Processing Destroyed Object Handling ...
52746	Adobe Flash Player on Linux RPATH Variable Search Path Subversion Local Privi...
51491	Adobe Flash Player ActionScript 2 VM Crafted PDF File Handling Multiple Actio...
50796	Adobe Flash Player on Linux SWF File Handling Arbitrary Code Execution
50127	Adobe Flash Player Actionscript FileReference download API FileReference.down...
50126	Adobe Flash Player Actionscript FileReference upload API FileReference.browse...
50073	Adobe Flash Player Differential SWF File Version Response DoS
49958	Adobe Flash Player Multiple Unspecified Arbitrary Remote Code Execution
49790	Adobe Flash Player ActionScript Attribute Interpretation Unspecified XSS
49785	Adobe Flash Player Policy File Interpretation Remote Non-root Domain Policy B...
49783	Adobe Flash Player on Mozilla jar: URL Unspecified Information Disclosure
49780	Adobe Flash Player Unspecified Remote DNS Rebinding Weakness
49753	Adobe Flash Player HTTP Response Header XSS
48944	Adobe Flash Player Access Control Dialog Remote Security Bypass (ClickJacking)
48049	Adobe Flash Player System.setClipboard Method Remote Clipboard Hijack

Information Assurance Vulnerability Management (IAVM)

Date	Description
2009-01-08	IAVM : 2009-B-0001 - Adobe Flash Player for Linux Remote Code Execution Vulnerability Severity : Category II - VMSKEY : V0017978

Snort® IPS/IDS

Date	Description
2016-03-22	Adobe Flash Player invalid object reference code execution attempt RuleID : 37690 - Revision : 2 - Type : FILE-FLASH
2015-03-31	Adobe Flash Player ASnative command execution attempt RuleID : 33585 - Revision : 2 - Type : FILE-FLASH
2015-03-31	Adobe Flash Player ASnative command execution attempt RuleID : 33584 - Revision : 2 - Type : FILE-FLASH
2014-01-10	Adobe Flash Player ASnative command execution attempt RuleID : 28686 - Revision : 2 - Type : FILE-FLASH
2014-01-10	Adobe Flash Player ASnative command execution attempt RuleID : 28685 - Revision : 5 - Type : FILE-FLASH
2014-01-10	Adobe Flash Player ASnative command execution attempt RuleID : 28684 - Revision : 5 - Type : FILE-FLASH
2014-01-10	Adobe Flash Player ASnative command execution attempt RuleID : 28683 - Revision : 5 - Type : FILE-FLASH
2014-01-10	Adobe Flash Player ASnative command execution attempt RuleID : 28682 - Revision : 5 - Type : FILE-FLASH
2014-01-10	Adobe Flash Player ASnative command execution attempt RuleID : 28681 - Revision : 5 - Type : FILE-FLASH
2014-01-10	Adobe Flash Player ASnative command execution attempt RuleID : 28680 - Revision : 5 - Type : FILE-FLASH
2014-01-10	Adobe Flash Player ASnative command execution attempt RuleID : 28679 - Revision : 5 - Type : FILE-FLASH
2014-01-10	Adobe Flash Player ASnative command execution attempt RuleID : 28678 - Revision : 2 - Type : FILE-FLASH
2014-01-10	Adobe Flash Player ASnative command execution attempt RuleID : 28677 - Revision : 2 - Type : FILE-FLASH
2014-01-10	Adobe Flash Player ASnative command execution attempt RuleID : 17606 - Revision : 11 - Type : FILE-FLASH
2014-01-10	Adobe Flash Player ASnative command execution attempt RuleID : 15869 - Revision : 14 - Type : FILE-FLASH
2014-01-10	Adobe Flash Player invalid object reference code execution attempt RuleID : 15478 - Revision : 13 - Type : FILE-FLASH

Nessus® Vulnerability Scanner

Date	Description
2013-01-24	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2010-0470.nasl - Type : ACT_GATHER_INFO
2013-01-24	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2010-0464.nasl - Type : ACT_GATHER_INFO
2013-01-24	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2009-0334.nasl - Type : ACT_GATHER_INFO
2013-01-24	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2009-0332.nasl - Type : ACT_GATHER_INFO
2013-01-24	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2008-0980.nasl - Type : ACT_GATHER_INFO
2013-01-24	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2008-0945.nasl - Type : ACT_GATHER_INFO
2011-01-27	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_flash-player-7071.nasl - Type : ACT_GATHER_INFO
2011-01-27	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_flash-player-6020.nasl - Type : ACT_GATHER_INFO
2011-01-27	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_flash-player-5877.nasl - Type : ACT_GATHER_INFO
2011-01-24	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201101-09.nasl - Type : ACT_GATHER_INFO
2010-12-02	Name : The remote SuSE 11 host is missing a security update. File : suse_11_flash-player-100611.nasl - Type : ACT_GATHER_INFO
2010-11-10	Name : The remote host is missing a Mac OS X update that fixes various security issues. File : macosx_10_6_5.nasl - Type : ACT_GATHER_INFO
2010-11-10	Name : The remote host is missing a Mac OS X update that fixes security issues. File : macosx_SecUpd2010-007.nasl - Type : ACT_GATHER_INFO
2010-06-16	Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_144e524a77eb11dfae06001b2134ef46.nasl - Type : ACT_GATHER_INFO
2010-06-14	Name : The remote openSUSE host is missing a security update. File : suse_11_0_flash-player-100611.nasl - Type : ACT_GATHER_INFO
2010-06-14	Name : The remote openSUSE host is missing a security update. File : suse_11_2_flash-player-100611.nasl - Type : ACT_GATHER_INFO
2010-06-14	Name : The remote openSUSE host is missing a security update. File : suse_11_1_flash-player-100611.nasl - Type : ACT_GATHER_INFO
2010-06-10	Name : The remote Windows host contains a version of Adobe AIR that is affected by m... File : adobe_air_apsb10-14.nasl - Type : ACT_GATHER_INFO
2010-06-10	Name : The remote Windows host contains a browser plug-in that is affected by a code... File : flash_player_apsb10-14.nasl - Type : ACT_GATHER_INFO
2009-09-24	Name : The remote SuSE 11 host is missing a security update. File : suse_11_flash-player-090316.nasl - Type : ACT_GATHER_INFO
2009-08-24	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2008-1047.nasl - Type : ACT_GATHER_INFO
2009-07-21	Name : The remote openSUSE host is missing a security update. File : suse_11_1_flash-player-090225.nasl - Type : ACT_GATHER_INFO
2009-07-21	Name : The remote openSUSE host is missing a security update. File : suse_11_0_flash-player-081107.nasl - Type : ACT_GATHER_INFO
2009-07-21	Name : The remote openSUSE host is missing a security update. File : suse_11_0_flash-player-081218.nasl - Type : ACT_GATHER_INFO
2009-07-21	Name : The remote openSUSE host is missing a security update. File : suse_11_0_flash-player-090226.nasl - Type : ACT_GATHER_INFO
2009-07-21	Name : The remote openSUSE host is missing a security update. File : suse_11_1_flash-player-081218.nasl - Type : ACT_GATHER_INFO
2009-05-13	Name : The remote host is missing a Mac OS X update that fixes various security issues. File : macosx_10_5_7.nasl - Type : ACT_GATHER_INFO
2009-05-13	Name : The remote host is missing a Mac OS X update that fixes various security issues. File : macosx_SecUpd2009-002.nasl - Type : ACT_GATHER_INFO
2009-03-11	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200903-23.nasl - Type : ACT_GATHER_INFO
2009-02-27	Name : The remote openSUSE host is missing a security update. File : suse_flash-player-6022.nasl - Type : ACT_GATHER_INFO
2009-02-26	Name : The remote Windows host contains a browser plugin that is affected by multipl... File : flash_player_apsb09_01.nasl - Type : ACT_GATHER_INFO
2008-12-21	Name : The remote openSUSE host is missing a security update. File : suse_flash-player-5878.nasl - Type : ACT_GATHER_INFO
2008-12-16	Name : The remote host is missing a Mac OS X update that fixes various security issues. File : macosx_SecUpd2008-008.nasl - Type : ACT_GATHER_INFO
2008-12-16	Name : The remote host is missing a Mac OS X update that fixes various security issues. File : macosx_10_5_6.nasl - Type : ACT_GATHER_INFO
2008-11-18	Name : The remote Windows host contains a runtime environment that is affected by mu... File : adobe_air_apsb08-23.nasl - Type : ACT_GATHER_INFO
2008-11-12	Name : The remote openSUSE host is missing a security update. File : suse_flash-player-5747.nasl - Type : ACT_GATHER_INFO
2008-11-12	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_flash-player-5757.nasl - Type : ACT_GATHER_INFO
2008-11-11	Name : The remote Windows host contains a browser plugin that is affected by multipl... File : flash_player_apsb08-20.nasl - Type : ACT_GATHER_INFO
2008-10-20	Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_78f456fd9c8711dda55e00163e000016.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2014-02-17 11:36:22	Multiple Updates

Global Informations

Type	Count
CWE ID(s)	14
Oval ID(s)	12
CPE ID(s)	103
Saint Exploit(s)	1
osvdb(s)	19
ExploitDB Exploit(s)	1
Openvas Exploit(s)	25
IAVM(s)	1
Snort® Rule(s)	16
Nessus® Exploit(s)	39

	Related
10	CVE-2008-4401
9.3	CVE-2009-0520
9.3	CVE-2009-0519
9.3	CVE-2008-5499
9.3	CVE-2008-4824
6.8	CVE-2008-4822
6.8	CVE-2008-4819
6.8	CVE-2008-4503
5.8	CVE-2009-0114
4.6	CVE-2009-0521
4.3	CVE-2008-5363
4.3	CVE-2008-5362
4.3	CVE-2008-5361
4.3	CVE-2008-4823
4.3	CVE-2008-4821
4.3	CVE-2008-4818
4.3	CVE-2008-4546
4.3	CVE-2008-3873
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 18 more Alert(s)