Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:5608D221E5AD4A91613C8164736A10C0
HistoryAug 26, 2009 - 12:00 a.m.

Adobe Flash Player authplay.dll vulnerability

2009-08-2600:00:00
SAINT Corporation
my.saintcorporation.com
24

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.334 Low

EPSS

Percentile

96.9%

JSON

Added: 08/26/2009
CVE: CVE-2009-1862
BID: 35759
OSVDB: 56282

Background

Adobe Flash Player is a cross-platform browser plug-in providing visual enhancements for web pages.

Problem

A vulnerability in **authplay.dll** in Adobe Flash Player allows command execution when a user opens a specially crafted .swf file.

Resolution

Apply the update referenced in APSB09-10.

References

<http://www.adobe.com/support/security/advisories/apsa09-03.html&gt;
<http://www.kb.cert.org/vuls/id/259425&gt;

Limitations

Exploit works on Flash Player 10.0.22.87 and requires a user to load the exploit page into Internet Explorer 6 or 7.

After a user loads the exploit page, there may be a delay before the exploit succeeds.

Platforms

Windows XP

Related

cve 2
cisa_kev 1
checkpoint_advisories 1
prion 1
saint 3
openvas 12
cert 1
nessus 16
ubuntucve 1
attackerkb 1
securityvulns 2
canvas 1
cvelist 1
redhat 2
gentoo 1
suse 1
cve
cve
CVE-2009-1862
2009-07-23 20:30:00
CVE-2009-2580
2009-07-23 19:30:00
cisa_kev
cisa_kev
Adobe Acrobat and Reader, Flash Player Unspecified Vulnerability
2022-06-08 00:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Acrobat authplay.dll Memory Corruption - Ver2 (CVE-2009-1862)
2014-04-16 00:00:00
prion
prion
Memory corruption
2009-07-23 20:30:00
saint
saint
Adobe Flash Player authplay.dll vulnerability
2009-08-26 00:00:00
Adobe Flash Player authplay.dll vulnerability
2009-08-26 00:00:00
Adobe Flash Player authplay.dll vulnerability
2009-08-26 00:00:00
openvas
openvas
Adobe Products '.pdf' and '.swf' RCE Vulnerability (APSA09-03) - Windows
2009-07-29 00:00:00
Adobe Products '.pdf' and '.swf' RCE Vulnerability (APSA09-03) - Linux
2009-07-29 00:00:00
Gentoo Security Advisory GLSA 200908-04 (adobe-flash acroread)
2009-08-17 00:00:00
cert
cert
Adobe Flash vulnerability affects Flash Player and other Adobe products
2009-07-22 00:00:00
nessus
nessus
Adobe Acrobat < 9.1.3 Flash Handling Unspecified Arbitrary Code Execution
2009-08-28 00:00:00
Adobe Reader < 9.1.3 Flash Handling Unspecified Arbitrary Code Execution (APSB09-10)
2009-08-05 00:00:00
Mac OS X 10.6.x < 10.6.1 Multiple Vulnerabilities
2009-09-11 00:00:00
ubuntucve
ubuntucve
CVE-2009-1862
2009-07-23 00:00:00
attackerkb
attackerkb
CVE-2009-1862
2009-07-23 00:00:00
securityvulns
securityvulns
Adobe Flash Plasyer memory corruption
2009-07-24 00:00:00
Security advisory for Adobe Reader, Acrobat and Flash Player
2009-07-24 00:00:00
canvas
canvas
Immunity Canvas: ACROBAT_FLASH
2009-07-23 20:30:00
cvelist
cvelist
CVE-2009-1862
2009-07-23 20:00:00
redhat
redhat
(RHSA-2009:1189) Critical: flash-plugin security update
2009-07-31 00:00:00
(RHSA-2009:1188) Critical: flash-plugin security update
2009-07-31 00:00:00
gentoo
gentoo
Adobe products: Multiple vulnerabilities
2009-08-07 00:00:00
suse
suse
remote code execution in flash-player
2009-08-05 14:55:37

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.334 Low

EPSS

Percentile

96.9%

JSON
Related for SAINT:5608D221E5AD4A91613C8164736A10C0
cve2cisa_kev1checkpoint_advisories1prion1saint3openvas12cert1nessus16ubuntucve1attackerkb1securityvulns2canvas1cvelist1redhat2gentoo1suse1