CVE-2008-4824
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.6 High
AI Score
Confidence
Low
0.614 Medium
EPSS
Percentile
97.8%
Multiple unspecified vulnerabilities in Adobe Flash Player 10.x before 10.0.12.36 and 9.x before 9.0.151.0 allow remote attackers to execute arbitrary code via unknown vectors related to “input validation errors.”
Affected configurations
References
lists.apple.com/archives/security-announce//2008//Dec/msg00000.html
osvdb.org/49958
secunia.com/advisories/32702
secunia.com/advisories/32772
secunia.com/advisories/33179
secunia.com/advisories/33390
secunia.com/advisories/34226
security.gentoo.org/glsa/glsa-200903-23.xml
sunsolve.sun.com/search/document.do?assetkey=1-26-248586-1
support.apple.com/kb/HT3338
support.avaya.com/elmodocs2/security/ASA-2009-020.htm
support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&DocumentOID=834256&poid=
www.adobe.com/support/security/bulletins/apsb08-22.html
www.isecpartners.com/advisories/2008-01-flash.txt
www.redhat.com/support/errata/RHSA-2008-0980.html
www.securityfocus.com/archive/1/498561/100/0/threaded
www.us-cert.gov/cas/techalerts/TA08-350A.html
www.vupen.com/english/advisories/2008/3189
www.vupen.com/english/advisories/2008/3444
Related
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.6 High
AI Score
Confidence
Low
0.614 Medium
EPSS
Percentile
97.8%