Lucene search

[email protected]NVD:CVE-2009-3464

HistoryNov 04, 2009 - 3:30 p.m.

CVE-2009-3464

2009-11-0415:30:00

CWE-94

[email protected]

web.nvd.nist.gov

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.073 Low

EPSS

Percentile

94.1%

JSON

Adobe Shockwave Player before 11.5.2.602 allows remote attackers to execute arbitrary code via crafted Shockwave content on a web site, related to an “invalid pointer vulnerability,” a different issue than CVE-2009-3465. NOTE: some of these details are obtained from third party information.

Affected configurations

NVD

Node

adobeshockwave_playerRange≤11.5.1.601

adobeshockwave_playerMatch1.0

adobeshockwave_playerMatch2.0

adobeshockwave_playerMatch3.0

adobeshockwave_playerMatch4.0

adobeshockwave_playerMatch5.0

adobeshockwave_playerMatch6.0

adobeshockwave_playerMatch8.0

adobeshockwave_playerMatch8.5.1

adobeshockwave_playerMatch9

adobeshockwave_playerMatch10.1.0.11

adobeshockwave_playerMatch11.0.0.456

adobeshockwave_playerMatch11.5.0.595

adobeshockwave_playerMatch11.5.0.596

References

securitytracker.com/id?1023123

www.adobe.com/support/security/bulletins/apsb09-16.html

www.securityfocus.com/bid/36905

www.vupen.com/english/advisories/2009/3134

exchange.xforce.ibmcloud.com/vulnerabilities/54119

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6394

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.073 Low

EPSS

Percentile

94.1%

JSON

Related for NVD:CVE-2009-3464

cve2 nvd1 cvelist2 prion2 openvas2 seebug1 securityvulns3 nessus2