CVE-2008-5499

Published: Dec 18, 2008Modified: Apr 23, 2026

9.3

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 8.6 / Impact: 10.0

Source: NVD

Description

Unspecified vulnerability in Adobe Flash Player for Linux 10.0.12.36, and 9.0.151.0 and earlier, allows remote attackers to execute arbitrary code via a crafted SWF file.

Affected (6)

Products: Adobe: Flash Player For Linux

1 product

Flash Player For Linux

Configuration A

6 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Adobe Flash Player For Linux	Up to 9.0.151.0
Adobe Flash Player For Linux	Version 10.0.12.36
Adobe Flash Player For Linux	Version 9.0.115.0
Adobe Flash Player For Linux	Version 9.0.124.0
Adobe Flash Player For Linux	Version 9.0.31
Adobe Flash Player For Linux	Version 9.0.48.0

Running on/with	Platform Versions
Linux Linux Kernel	All versions

Related CWEs

Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

References (26)

http://lists.opensuse.org/opensuse-security-announce/2008-12/msg00006.html

Source: cve@mitre.org

http://osvdb.org/50796

Source: cve@mitre.org

http://secunia.com/advisories/33221

Source: cve@mitre.org

http://secunia.com/advisories/33267

Source: cve@mitre.org

http://secunia.com/advisories/33294

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/34226

Source: cve@mitre.org

http://security.gentoo.org/glsa/glsa-200903-23.xml

Source: cve@mitre.org

http://www.adobe.com/support/security/bulletins/apsb08-24.html

Source: cve@mitre.org

PatchVendor Advisory

http://www.redhat.com/support/errata/RHSA-2008-1047.html

Source: cve@mitre.org

http://www.securityfocus.com/bid/32896

Source: cve@mitre.org

http://www.securitytracker.com/id?1021458

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2008/3449

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/47445

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-security-announce/2008-12/msg00006.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://osvdb.org/50796

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/33221

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/33267

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/33294

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/34226

Source: af854a3a-2127-422b-91ae-364da2661108

http://security.gentoo.org/glsa/glsa-200903-23.xml

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.adobe.com/support/security/bulletins/apsb08-24.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.redhat.com/support/errata/RHSA-2008-1047.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/32896

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id?1021458

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2008/3449

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/47445

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.