[Forgot Password]
Login  Register Subscribe

24128

 
 

131615

 
 

112965

 
 

909

 
 

87854

 
 

136

Paid content will be excluded from the download.


Download | Alert*
OVAL

DNS rebinding attack vulnerability in Adobe Flash Player or Adobe Air

ID: oval:org.secpod.oval:def:9350Date: (C)2013-02-26   (M)2018-09-02
Class: VULNERABILITYFamily: windows




The host is installed with Adobe Flash Player 9.x before 9.0.124.0 or Adobe Air before 1.0.1 and is prone to a dns rebinding attack vulnerability. A flaw is present in the applications, which fail to handle interaction error between Adobe Flash and multiple Universal Plug and Play (UPnP) services. Successful exploitation could allow remote attackers to conduct DNS rebinding attacks.

Platform:
Microsoft Windows Server 2016
Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Vista
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows 7
Microsoft Windows 10
Microsoft Windows 8
Microsoft Windows 8.1
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2012
Product:
Adobe Flash Player
Adobe AIR
Reference:
CVE-2008-1654
CVE    1
CVE-2008-1654
CPE    4
cpe:/a:adobe:air:::x86
cpe:/a:adobe:flash_player:9::x86
cpe:/a:adobe:flash_player_activex:9::x86
cpe:/a:adobe:flash_player
...

© SecPod Technologies