CVE-2008-5499

Published Dec 18, 2008

Last updated 10 days ago

CVSS info 9.3

Overview

Description: Unspecified vulnerability in Adobe Flash Player for Linux 10.0.12.36, and 9.0.151.0 and earlier, allows remote attackers to execute arbitrary code via a crafted SWF file.
Source: cve@mitre.org
NVD status: Deferred

Risk scores

CVSS 2.0

Type: Primary
Base score: 9.3
Impact score: 10
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-94

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:adobe:flash_player_for_linux:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "72468E9A-37B6-444C-BF20-FEA5548A4364",
            "versionEndIncluding": "9.0.151.0"
          },
          {
            "criteria": "cpe:2.3:a:adobe:flash_player_for_linux:9.0.31:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DC9C3926-1FDB-4D8C-AC72-C7E1A222DB35"
          },
          {
            "criteria": "cpe:2.3:a:adobe:flash_player_for_linux:9.0.48.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1F08319F-1C6D-4BC5-BAF9-251509974532"
          },
          {
            "criteria": "cpe:2.3:a:adobe:flash_player_for_linux:9.0.115.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "15C534DD-167D-45AA-B6DD-0776E78E649A"
          },
          {
            "criteria": "cpe:2.3:a:adobe:flash_player_for_linux:9.0.124.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "910B58CC-8121-4B71-9ED9-3C9C45FA085B"
          },
          {
            "criteria": "cpe:2.3:a:adobe:flash_player_for_linux:10.0.12.36:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FE94BCCA-F6B2-48C9-8FBD-36CC3194B00E"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "155AD4FB-E527-4103-BCEF-801B653DEA37"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References