Mend.io Vulnerability Database

What is a CVE vulnerability ID? icon What is a WS vulnerability ID? icon What is an MSC vulnerability ID? icon
New vulnerability? Tell us about it!
icon

We found results for “

CVE-2008-4824

Date: November 17, 2008

Multiple unspecified vulnerabilities in Adobe Flash Player 10.x before 10.0.12.36 and 9.x before 9.0.151.0 allow remote attackers to execute arbitrary code via unknown vectors related to "input validation errors."

Severity Score

Related Resources (22)

http://secunia.com/advisories/33179
http://secunia.com/advisories/32772
https://nvd.nist.gov/vuln/detail/CVE-2008-4824
http://secunia.com/advisories/34226
http://www.redhat.com/support/errata/RHSA-2008-0980.html
http://security.gentoo.org/glsa/glsa-200903-23.xml
http://secunia.com/advisories/32702
http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&DocumentOID=834256&poid=
http://lists.apple.com/archives/security-announce//2008//Dec/msg00000.html
http://www.securityfocus.com/archive/1/498561/100/0/threaded
http://www.us-cert.gov/cas/techalerts/TA08-350A.html
http://osvdb.org/49958
http://www.vupen.com/english/advisories/2008/3189
http://support.apple.com/kb/HT3338
http://sunsolve.sun.com/search/document.do?assetkey=1-26-248586-1
http://www.vupen.com/english/advisories/2008/3444
http://www.adobe.com/support/security/bulletins/apsb08-22.html
http://www.isecpartners.com/advisories/2008-01-flash.txt
http://secunia.com/advisories/33390
http://support.avaya.com/elmodocs2/security/ASA-2009-020.htm
https://people.canonical.com/~ubuntu-security/cve/CVE-2008-4824
https://www.mend.io/vulnerability-database/CVE-2008-4824

Severity Score

Weakness Type (CWE)

Input Validation

CWE-20

CVSS v3.1

Base Score:
Attack Vector (AV): NETWORK
Attack Complexity (AC): HIGH
Privileges Required (PR): NONE
User Interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality (C): HIGH
Integrity (I): HIGH
Availability (A): HIGH

CVSS v2

Base Score:
Access Vector (AV): NETWORK
Access Complexity (AC): MEDIUM
Authentication (AU): NONE
Confidentiality (C): COMPLETE
Integrity (I): COMPLETE
Availability (A): COMPLETE
Additional information:

Do you need more information?

Contact Us