Lucene search

K
ubuntucveUbuntu.comUB:CVE-2009-0520
HistoryFeb 26, 2009 - 12:00 a.m.

CVE-2009-0520

2009-02-2600:00:00
ubuntu.com
ubuntu.com
15

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

EPSS

0.41

Percentile

97.3%

Adobe Flash Player 9.x before 9.0.159.0 and 10.x before 10.0.22.87 does not
properly remove references to destroyed objects during Shockwave Flash file
processing, which allows remote attackers to execute arbitrary code via a
crafted file, related to a “buffer overflow issue.”

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu7.10noarchadobe-flashplugin< 10.0.22.87-0gutsy3UNKNOWN
ubuntu8.04noarchadobe-flashplugin< 10.0.22.87-2UNKNOWN
ubuntu8.10noarchadobe-flashplugin< 10.0.22.87-2intrepid1UNKNOWN
ubuntu7.10noarchflashplugin-nonfree< 9.0.159.0ubuntu1~gutsy1UNKNOWN
ubuntu8.04noarchflashplugin-nonfree< 9.0.159.0ubuntu1~hardy1UNKNOWN
ubuntu8.10noarchflashplugin-nonfree< 10.0.22.87ubuntu1~intrepid1UNKNOWN
ubuntu9.04noarchflashplugin-nonfree< 10.0.22.87ubuntu1UNKNOWN
ubuntu9.10noarchflashplugin-nonfree< 10.0.22.87ubuntu1UNKNOWN

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

EPSS

0.41

Percentile

97.3%