Vulnerability Details CVE-2008-4824
Multiple unspecified vulnerabilities in Adobe Flash Player 10.x before 10.0.12.36 and 9.x before 9.0.151.0 allow remote attackers to execute arbitrary code via unknown vectors related to "input validation errors."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.476
EPSS Ranking 97.6%
CVSS Severity
CVSS v2 Score 9.3
References
- http://lists.apple.com/archives/security-announce//2008//Dec/msg00000.html
- http://osvdb.org/49958
- http://secunia.com/advisories/32702
- http://secunia.com/advisories/32772
- http://secunia.com/advisories/33179
- http://secunia.com/advisories/33390
- http://secunia.com/advisories/34226
- http://security.gentoo.org/glsa/glsa-200903-23.xml
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-248586-1
- http://support.apple.com/kb/HT3338
- http://support.avaya.com/elmodocs2/security/ASA-2009-020.htm
- http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&DocumentOID=834256&poid=
- http://www.adobe.com/support/security/bulletins/apsb08-22.html
- http://www.isecpartners.com/advisories/2008-01-flash.txt
- http://www.redhat.com/support/errata/RHSA-2008-0980.html
- http://www.securityfocus.com/archive/1/498561/100/0/threaded
- http://www.us-cert.gov/cas/techalerts/TA08-350A.html
- http://www.vupen.com/english/advisories/2008/3189
- http://www.vupen.com/english/advisories/2008/3444
- http://lists.apple.com/archives/security-announce//2008//Dec/msg00000.html
- http://osvdb.org/49958
- http://secunia.com/advisories/32702
- http://secunia.com/advisories/32772
- http://secunia.com/advisories/33179
- http://secunia.com/advisories/33390
- http://secunia.com/advisories/34226
- http://security.gentoo.org/glsa/glsa-200903-23.xml
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-248586-1
- http://support.apple.com/kb/HT3338
- http://support.avaya.com/elmodocs2/security/ASA-2009-020.htm
- http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&DocumentOID=834256&poid=
- http://www.adobe.com/support/security/bulletins/apsb08-22.html
- http://www.isecpartners.com/advisories/2008-01-flash.txt
- http://www.redhat.com/support/errata/RHSA-2008-0980.html
- http://www.securityfocus.com/archive/1/498561/100/0/threaded
- http://www.us-cert.gov/cas/techalerts/TA08-350A.html
- http://www.vupen.com/english/advisories/2008/3189
- http://www.vupen.com/english/advisories/2008/3444
Products affected by CVE-2008-4824
-
cpe:2.3:a:adobe:flash_player:10
-
cpe:2.3:a:adobe:flash_player:10.0.0.584
-
cpe:2.3:a:adobe:flash_player:10.0.12.10
-
cpe:2.3:a:adobe:flash_player:10.0.2.54
-
cpe:2.3:a:adobe:flash_player:9.0.112.0
-
cpe:2.3:a:adobe:flash_player:9.0.114.0
-
cpe:2.3:a:adobe:flash_player:9.0.115.0
-
cpe:2.3:a:adobe:flash_player:9.0.124.0
-
cpe:2.3:a:adobe:flash_player:9.0.125.0
-
cpe:2.3:a:adobe:flash_player:9.0.16.0
-
cpe:2.3:a:adobe:flash_player:9.0.18d60
-
cpe:2.3:a:adobe:flash_player:9.0.20
-
cpe:2.3:a:adobe:flash_player:9.0.20.0
-
cpe:2.3:a:adobe:flash_player:9.0.28
-
cpe:2.3:a:adobe:flash_player:9.0.28.0
-
cpe:2.3:a:adobe:flash_player:9.0.31
-
cpe:2.3:a:adobe:flash_player:9.0.31.0
-
cpe:2.3:a:adobe:flash_player:9.0.45.0
-
cpe:2.3:a:adobe:flash_player:9.0.47.0
-
cpe:2.3:a:adobe:flash_player:9.0.48.0