[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248392

 
 

909

 
 

195452

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
OVAL

Unspecified vulnerability in Adobe Flash Player via a crafted PDF file - CVE-2008-5362

ID: oval:org.secpod.oval:def:16520Date: (C)2014-01-08   (M)2022-10-10
Class: VULNERABILITYFamily: windows




The host is installed with Adobe Flash Player 9.0.124.0 and earlier and is prone to unspecified vulnerability. The flaw is present in the DefineConstantPool action in the ActionScript 2 virtual machine, which accepts an untrusted input value for a "constant count,". Successful exploitation allows remote attackers to read sensitive data from process memory via a crafted PDF file.

Platform:
Microsoft Windows Server 2016
Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Vista
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows 7
Microsoft Windows 10
Microsoft Windows 8
Microsoft Windows Server 2012
Microsoft Windows 8.1
Microsoft Windows Server 2012 R2
Product:
Adobe Flash Player
Adobe AIR
Reference:
CVE-2008-5362
CVE    1
CVE-2008-5362
CPE    3
cpe:/a:adobe:flash_player_npapi:::x86
cpe:/a:adobe:air:::x86
cpe:/a:adobe:flash_player_activex:::x86

© SecPod Technologies