Lucene search
HistoryOct 06, 2008 - 6:00 p.m.
CVE-2008-3872
adobe flash player
cve-2008-3872
vulnerability
nvd
security
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
6.7 Medium
AI Score
Confidence
Low
0.006 Low
EPSS
Percentile
79.4%
Adobe Flash Player 8.0.39.0 and earlier, and 9.x up to 9.0.115.0, allows remote attackers to bypass the allowScriptAccess parameter setting via a crafted SWF file with unspecified “Filter evasion” manipulations.
Affected configurations
Node
adobeflash_playerRange8.0–8.0.39.0
ORadobeflash_playerRange9.0–9.0.115.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| adobe:flash_player | adobe flash player | le | 8.0.39.0 |
| adobe:flash_player | adobe flash player | le | 9.0.115.0 |
Related
ubuntucve
ubuntucve
CVE-2008-3872
2008-10-06 00:00:00
cvelist
cvelist
CVE-2008-3872
2008-10-06 17:00:00
prion
prion
Authentication flaw
2008-10-06 18:00:00
nvd
nvd
CVE-2008-3872
2008-10-06 18:00:10
nessus
nessus
RHEL 3 / 4 / 5 : flash-plugin (RHSA-2008:0221)
2009-08-24 00:00:00
redhat
redhat
(RHSA-2008:0221) Critical: flash-plugin security update
2008-04-08 00:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
6.7 Medium
AI Score
Confidence
Low
0.006 Low
EPSS
Percentile
79.4%
Related for CVE-2008-3872