CVE-2008-4820

high

Description

Unspecified vulnerability in the Flash Player ActiveX control in Adobe Flash Player 9.0.124.0 and earlier on Windows allows attackers to obtain sensitive information via unknown vectors.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/46533

http://www.vupen.com/english/advisories/2008/3444

http://www.us-cert.gov/cas/techalerts/TA08-350A.html

http://www.securitytracker.com/id?1021148

http://www.securityfocus.com/bid/32129

http://www.adobe.com/support/security/bulletins/apsb08-20.html

http://support.nortel.com/go/main.jsp?cscat=BLTNDETAIL&DocumentOID=834256&poid=

http://support.avaya.com/elmodocs2/security/ASA-2009-020.htm

http://support.apple.com/kb/HT3338

http://sunsolve.sun.com/search/document.do?assetkey=1-26-248586-1

http://secunia.com/advisories/33390

http://secunia.com/advisories/33179

http://lists.apple.com/archives/security-announce//2008//Dec/msg00000.html

Details

Source: Mitre, NVD

Published: 2008-11-10

Updated: 2018-10-30

Risk Information

CVSS v2

Base Score: 7.1

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:N/A:N

Severity: High

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N