CVE-2009-3797

EUVD-2009-3769
Adobe Flash Player 10.x before 10.0.42.34 and Adobe AIR before 1.5.3 might allow attackers to execute arbitrary code via unspecified vectors that trigger memory corruption.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 88%
Affected Products (NVD)
VendorProductVersion
adobeadobe_air
𝑥
≤ 1.5.2
adobeadobe_air
1.0
adobeadobe_air
1.0.1
adobeadobe_air
1.1
adobeadobe_air
1.5.1
adobeflash_player
10.0.0.584
adobeflash_player
10.0.12.10
adobeflash_player
10.0.12.36
adobeflash_player
10.0.22.87
adobeflash_player
10.0.32.18
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
flashplugin-nonfree
dapper
ignored
hardy
Fixed 0.0.1.218+really9.0.260.0ubuntu1
released
intrepid
Fixed 10.0.42.34ubuntu0.8.10.1
released
jaunty
Fixed 10.0.42.34ubuntu0.9.04.1
released
karmic
Fixed 10.0.42.34ubuntu0.9.10.1
released
lucid
not-affected
Common Weakness Enumeration
References
http://lists.apple.com/archives/security-announce/2010/Jan/msg00000.html
http://lists.opensuse.org/opensuse-security-announce/2009-12/msg00003.html
http://secunia.com/advisories/37584
http://secunia.com/advisories/37902
http://secunia.com/advisories/38241
http://securitytracker.com/id?1023306
http://securitytracker.com/id?1023307
http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021716.1-1
http://support.apple.com/kb/HT4004
http://www.adobe.com/support/security/bulletins/apsb09-19.html
http://www.redhat.com/support/errata/RHSA-2009-1657.html
http://www.securityfocus.com/bid/37199
http://www.us-cert.gov/cas/techalerts/TA09-343A.html
http://www.vupen.com/english/advisories/2009/3456
http://www.vupen.com/english/advisories/2010/0173
https://bugzilla.redhat.com/show_bug.cgi?id=543857
https://exchange.xforce.ibmcloud.com/vulnerabilities/54633
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15795
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7140
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8350
http://lists.apple.com/archives/security-announce/2010/Jan/msg00000.html
http://lists.opensuse.org/opensuse-security-announce/2009-12/msg00003.html
http://secunia.com/advisories/37584
http://secunia.com/advisories/37902
http://secunia.com/advisories/38241
http://securitytracker.com/id?1023306
http://securitytracker.com/id?1023307
http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021716.1-1
http://support.apple.com/kb/HT4004
http://www.adobe.com/support/security/bulletins/apsb09-19.html
http://www.redhat.com/support/errata/RHSA-2009-1657.html
http://www.securityfocus.com/bid/37199
http://www.us-cert.gov/cas/techalerts/TA09-343A.html
http://www.vupen.com/english/advisories/2009/3456
http://www.vupen.com/english/advisories/2010/0173
https://bugzilla.redhat.com/show_bug.cgi?id=543857
https://exchange.xforce.ibmcloud.com/vulnerabilities/54633
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15795
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7140
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8350