CVE-2009-3797

  1. Reconshell
  2. Vulnerabilities (CVE)
  3. CVE-2009-3797
Adobe Flash Player 10.x before 10.0.42.34 and Adobe AIR before 1.5.3 might allow attackers to execute arbitrary code via unspecified vectors that trigger memory corruption.

9.3 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability : 8.6 / Impact : 10.0

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References
Link Resource
http://www.adobe.com/support/security/bulletins/apsb09-19.html Patch Vendor Advisory
http://www.vupen.com/english/advisories/2009/3456 Patch Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=543857 Patch
http://www.us-cert.gov/cas/techalerts/TA09-343A.html US Government Resource
http://secunia.com/advisories/37584 Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2009-1657.html Patch
http://securitytracker.com/id?1023306 Patch
http://securitytracker.com/id?1023307 Patch
http://www.securityfocus.com/bid/37199
http://lists.opensuse.org/opensuse-security-announce/2009-12/msg00003.html
http://secunia.com/advisories/37902
http://lists.apple.com/archives/security-announce/2010/Jan/msg00000.html
http://support.apple.com/kb/HT4004
http://www.vupen.com/english/advisories/2010/0173
http://secunia.com/advisories/38241
http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021716.1-1
https://exchange.xforce.ibmcloud.com/vulnerabilities/54633
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8350
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7140
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15795
Advertisement

NeevaHost hosting service
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:adobe:adobe_air:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:1.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.0.12.36:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.0.12.10:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:1.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:*:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.0.32.18:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.0.22.87:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.0.0.584:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:1.5.1:*:*:*:*:*:*:*
Information

Published : 2009-12-10 11:30

Updated : 2017-09-18 18:29

NVD link : CVE-2009-3797

Mitre link : CVE-2009-3797

JSON object : View

CWE
CWE-399

Resource Management Errors

Advertisement

dedicated server usa
Products Affected

adobe

  • flash_player
  • adobe_air