Flash Player Security Vulnerabilities and Issues — Flash Player CVE List

Lucene search

AdobeFlash Player

9 matches found

CVE•added 2009/07/23 8:30 p.m.•991 views

CVE-2009-1862

Unspecified vulnerability in Adobe Reader and Acrobat 9.x through 9.1.2, and Adobe Flash Player 9.x through 9.0.159.0 and 10.x through 10.0.22.87, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via (1) a crafted Flash application in a .pdf file or...

9.3CVSS7.8AI score0.57995EPSS

CVE•added 2009/07/31 7:30 p.m.•71 views

CVE-2009-1864

Heap-based buffer overflow in Adobe Flash Player before 9.0.246.0 and 10.x before 10.0.32.18, and Adobe AIR before 1.5.2, allows attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unspecified vectors.

9.3CVSS8.1AI score0.03207EPSS

CVE•added 2009/07/31 7:30 p.m.•71 views

CVE-2009-1867

Adobe Flash Player before 9.0.246.0 and 10.x before 10.0.32.18, and Adobe AIR before 1.5.2, allows attackers to trick a user into (1) selecting a link or (2) completing a dialog, related to a "clickjacking vulnerability."

4.3CVSS7.3AI score0.00989EPSS

CVE•added 2009/07/31 7:30 p.m.•71 views

CVE-2009-1868

9.3CVSS8.1AI score0.18527EPSS

CVE•added 2009/07/31 7:30 p.m.•67 views

CVE-2009-1865

Adobe Flash Player before 9.0.246.0 and 10.x before 10.0.32.18, and Adobe AIR before 1.5.2, allows attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unspecified vectors, related to a "null pointer vulnerability."

9.3CVSS8AI score0.02504EPSS

CVE•added 2009/07/31 7:30 p.m.•63 views

CVE-2009-1866

Stack-based buffer overflow in Adobe Flash Player before 9.0.246.0 and 10.x before 10.0.32.18, and Adobe AIR before 1.5.2, allows attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unspecified vectors.

9.3CVSS8.1AI score0.03207EPSS

CVE•added 2009/07/31 7:30 p.m.•62 views

CVE-2009-1863

Unspecified vulnerability in Adobe Flash Player before 9.0.246.0 and 10.x before 10.0.32.18, and Adobe AIR before 1.5.2, allows attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unknown vectors, related to a "privilege escalation vulnerability."

9.3CVSS8AI score0.02504EPSS

CVE•added 2009/07/31 7:30 p.m.•62 views

CVE-2009-1869

Integer overflow in the ActionScript Virtual Machine 2 (AVM2) abcFile parser in Adobe Flash Player before 9.0.246.0 and 10.x before 10.0.32.18, and Adobe AIR before 1.5.2, allows attackers to cause a denial of service (application crash) or possibly execute arbitrary code via an AVM2 file with a la...

9.3CVSS8AI score0.21945EPSS

CVE•added 2009/07/31 7:30 p.m.•59 views

CVE-2009-1870

Adobe Flash Player before 9.0.246.0 and 10.x before 10.0.32.18, and Adobe AIR before 1.5.2, allows attackers to obtain sensitive information via vectors involving saving an SWF file to a hard drive, related to a "local sandbox vulnerability."

4.9CVSS7.1AI score0.00188EPSS