CVE-2009-3800

Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus

SecuriTeam™
Beyond Security®

SecuriTeam™ Home
Ask the Team
Mailing Lists
Advertising Info
Blogs

	SecuriTeam™ in Your Inbox

	E-mail this CVE-2009-3800 to a friend

New vulnerability?
New tool?
Tell us

Credit:
The original article can be found at: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3800
The original article can be found at: http://www.securityfocus.com/bid/37269

Website Security Scan	Code Vulnerability Test	Network Assessment Tool
Detect hidden vulnerabilities	Exhaustive automated testing	Real-time, continuous security
Get guidance from professionals	of internal or 3rd party code.	scanning for your entire network

Check for CVE-2009-3800

Vulnerability Assessment and Management.
Automated Pen Testing for 50 to 50,000 nodes
beyondsecurity.com/vulnerability-scanner

Vulnerable Systems:
* Adobe Flex 3.0
* Adobe Flash Player 10.0.32 18
* Adobe Flash Player 10.0.22 .87
* Adobe Flash Player 10.0.15 .3
* Adobe Flash Player 10.0.12 .36
* Adobe Flash Player 10.0.12 .35
* Adobe Flash Player 10
* Adobe Flash CS4 Professional 0
* Adobe Flash CS3 Professional 0
* Adobe AIR 1.5.2
* Adobe AIR 1.5.1
* Adobe AIR 1.5
* Adobe AIR 1.1
* Adobe AIR 1.01
* Adobe AIR 1.0

Immune system:
* Adobe Flash Player 9.0.260.0
* Adobe Flash Player 10.0.42.34
* Adobe AIR 1.5.3

Adobe Flash Player and Adobe AIR are prone to multiple remote code-execution vulnerabilities.
An attacker can exploit these issues to execute arbitrary code with the privileges of the user running the application or crash the application, denying service to legitimate users.
The following products are affected:
Flash Player 10.0.32.18 and prior
AIR 1.5.2 and prior

Vendor Status:
Adobe as issued an update for this vulnerablity.

Patch Availability:
http://www.adobe.com/products/flash.html

CVE Information:
CVE-2009-3800

Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus