Remote Denial of Service Vulnerability in Adobe Flash Player
CVE-2009-0519

Currently unrated

Key Information:

Vendor: Adobe
Status: Flash Player; Flash Player For Linux; Air; Flex
Vendor: CVE Published:; 26 February 2009

Summary

An unspecified flaw in Adobe Flash Player versions 9.x prior to 9.0.159.0 and 10.x prior to 10.0.22.87 allows remote attackers to potentially trigger a denial of service, leading to browser crashes. This vulnerability can also enable attackers to execute arbitrary code on the affected system through specially crafted Shockwave Flash (.swf) files, raising serious security concerns for users and organizations relying on this platform.

References

http://isc.sans.org/diary.html?storyid=5929

x_refsource_MISC

https://bugzilla.redhat.com/show_bug.cgi?id=487141

x_refsource_CONFIRM

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

EPSS Score

17% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Feb 26, 2009
Vulnerability Reserved
Feb 10, 2009