CVE-2009-2186

2009-06-2501:30:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

adobe

shockwave player

cve-2009-2186

vulnerability

remote execution

arbitrary code

nvd

7.3 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.009 Low

EPSS

Percentile

83.0%

JSON

Unspecified vulnerability in Adobe Shockwave Player before 11.0.0.465 allows remote attackers to execute arbitrary code via unknown vectors, a different vulnerability than CVE-2009-1860, related to an older issue that “was previously resolved in Shockwave Player 11.0.0.465.”

CPENameOperatorVersion
adobe:shockwave_playeradobe shockwave playereq5.0
adobe:shockwave_playeradobe shockwave playereq4.0
adobe:shockwave_playeradobe shockwave playereq8.5.1
adobe:shockwave_playeradobe shockwave playereq6.0
adobe:shockwave_playeradobe shockwave playereq10.1.0.11
adobe:shockwave_playeradobe shockwave playereq1.0
adobe:shockwave_playeradobe shockwave playereq2.0
adobe:shockwave_playeradobe shockwave playereq8.0
adobe:shockwave_playeradobe shockwave playereq3.0
adobe:shockwave_playeradobe shockwave playereq9

CPE	Name	Operator	Version
adobe:shockwave_player	adobe shockwave player	eq	5.0
adobe:shockwave_player	adobe shockwave player	eq	4.0
adobe:shockwave_player	adobe shockwave player	eq	8.5.1
adobe:shockwave_player	adobe shockwave player	eq	6.0
adobe:shockwave_player	adobe shockwave player	eq	10.1.0.11
adobe:shockwave_player	adobe shockwave player	eq	1.0
adobe:shockwave_player	adobe shockwave player	eq	2.0
adobe:shockwave_player	adobe shockwave player	eq	8.0
adobe:shockwave_player	adobe shockwave player	eq	3.0
adobe:shockwave_player	adobe shockwave player	eq	9