ByteOS Network

Adobe Flash Player 9.x before 9.0.159.0 and 10.x before 10.0.22.87 does not properly remove references to destroyed objects during Shockwave Flash file processing, which allows remote attackers to execute arbitrary code via a crafted file, related to a "buffer overflow issue."

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Type	Version	Base score	Base severity	Vector
Primary	2.0	9.3	HIGH	AV:N/AC:M/Au:N/C:C/I:C/A:C

CWE ID	Type	Source
CWE-119	Primary	nvd@nist.gov

References

Hyperlink	Source	Resource
http://isc.sans.org/diary.html?storyid=5929	cve@mitre.org	Patch
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=773	cve@mitre.org	N/A
http://lists.apple.com/archives/security-announce/2009/May/msg00002.html	cve@mitre.org	N/A
http://rhn.redhat.com/errata/RHSA-2009-0332.html	cve@mitre.org	N/A
http://rhn.redhat.com/errata/RHSA-2009-0334.html	cve@mitre.org	N/A
http://secunia.com/advisories/34012	cve@mitre.org	N/A
http://secunia.com/advisories/34226	cve@mitre.org	N/A
http://secunia.com/advisories/34293	cve@mitre.org	N/A
http://secunia.com/advisories/35074	cve@mitre.org	N/A
http://security.gentoo.org/glsa/glsa-200903-23.xml	cve@mitre.org	N/A
http://securitytracker.com/id?1021750	cve@mitre.org	N/A
http://sunsolve.sun.com/search/document.do?assetkey=1-66-254909-1	cve@mitre.org	N/A
http://support.apple.com/kb/HT3549	cve@mitre.org	N/A
http://www.adobe.com/support/security/bulletins/apsb09-01.html	cve@mitre.org	Patch Vendor Advisory
http://www.securityfocus.com/bid/33880	cve@mitre.org	Patch
http://www.us-cert.gov/cas/techalerts/TA09-133A.html	cve@mitre.org	US Government Resource
http://www.vupen.com/english/advisories/2009/0513	cve@mitre.org	Patch
http://www.vupen.com/english/advisories/2009/0743	cve@mitre.org	N/A
http://www.vupen.com/english/advisories/2009/1297	cve@mitre.org	N/A
https://bugzilla.redhat.com/show_bug.cgi?id=487142	cve@mitre.org	N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/48887	cve@mitre.org	N/A
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16057	cve@mitre.org	N/A
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6593	cve@mitre.org	N/A
http://isc.sans.org/diary.html?storyid=5929	af854a3a-2127-422b-91ae-364da2661108	Patch
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=773	af854a3a-2127-422b-91ae-364da2661108	N/A
http://lists.apple.com/archives/security-announce/2009/May/msg00002.html	af854a3a-2127-422b-91ae-364da2661108	N/A
http://rhn.redhat.com/errata/RHSA-2009-0332.html	af854a3a-2127-422b-91ae-364da2661108	N/A
http://rhn.redhat.com/errata/RHSA-2009-0334.html	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/34012	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/34226	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/34293	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/35074	af854a3a-2127-422b-91ae-364da2661108	N/A
http://security.gentoo.org/glsa/glsa-200903-23.xml	af854a3a-2127-422b-91ae-364da2661108	N/A
http://securitytracker.com/id?1021750	af854a3a-2127-422b-91ae-364da2661108	N/A
http://sunsolve.sun.com/search/document.do?assetkey=1-66-254909-1	af854a3a-2127-422b-91ae-364da2661108	N/A
http://support.apple.com/kb/HT3549	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.adobe.com/support/security/bulletins/apsb09-01.html	af854a3a-2127-422b-91ae-364da2661108	Patch Vendor Advisory
http://www.securityfocus.com/bid/33880	af854a3a-2127-422b-91ae-364da2661108	Patch
http://www.us-cert.gov/cas/techalerts/TA09-133A.html	af854a3a-2127-422b-91ae-364da2661108	US Government Resource
http://www.vupen.com/english/advisories/2009/0513	af854a3a-2127-422b-91ae-364da2661108	Patch
http://www.vupen.com/english/advisories/2009/0743	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.vupen.com/english/advisories/2009/1297	af854a3a-2127-422b-91ae-364da2661108	N/A
https://bugzilla.redhat.com/show_bug.cgi?id=487142	af854a3a-2127-422b-91ae-364da2661108	N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/48887	af854a3a-2127-422b-91ae-364da2661108	N/A
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16057	af854a3a-2127-422b-91ae-364da2661108	N/A
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6593	af854a3a-2127-422b-91ae-364da2661108	N/A

Hyperlink: http://isc.sans.org/diary.html?storyid=5929

Source: cve@mitre.org

Resource:

Patch

Hyperlink: http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=773

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://lists.apple.com/archives/security-announce/2009/May/msg00002.html

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://rhn.redhat.com/errata/RHSA-2009-0332.html

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://rhn.redhat.com/errata/RHSA-2009-0334.html

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://secunia.com/advisories/34012

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://secunia.com/advisories/34226

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://secunia.com/advisories/34293

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://secunia.com/advisories/35074

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://security.gentoo.org/glsa/glsa-200903-23.xml

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://securitytracker.com/id?1021750

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://sunsolve.sun.com/search/document.do?assetkey=1-66-254909-1

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://support.apple.com/kb/HT3549

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.adobe.com/support/security/bulletins/apsb09-01.html

Source: cve@mitre.org

Resource:

Patch

Vendor Advisory

Hyperlink: http://www.securityfocus.com/bid/33880

Source: cve@mitre.org

Resource:

Patch

Hyperlink: http://www.us-cert.gov/cas/techalerts/TA09-133A.html

Source: cve@mitre.org

Resource:

US Government Resource

Hyperlink: http://www.vupen.com/english/advisories/2009/0513

Source: cve@mitre.org

Resource:

Patch

Hyperlink: http://www.vupen.com/english/advisories/2009/0743

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.vupen.com/english/advisories/2009/1297

Source: cve@mitre.org

Resource: N/A

Hyperlink: https://bugzilla.redhat.com/show_bug.cgi?id=487142

Source: cve@mitre.org

Resource: N/A

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/48887

Source: cve@mitre.org

Resource: N/A

Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16057

Source: cve@mitre.org

Resource: N/A

Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6593

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://isc.sans.org/diary.html?storyid=5929