ID de Prueba:	1.3.6.1.4.1.25623.1.0.800359
Categoría:	Buffer overflow
Título:	Adobe Flash Player Multiple Vulnerabilities (Mar 2009) - Windows
Resumen:	Adobe Products is prone to multiple vulnerabilities.
Descripción:	Summary: Adobe Products is prone to multiple vulnerabilities. Vulnerability Insight: - Error while processing multiple references to an unspecified object which can be exploited by tricking the user to accessing a malicious crafted SWF file. - Input validation error in the processing of SWF file. - Error while displaying the mouse pointer on Windows which may cause 'Clickjacking' attacks. Vulnerability Impact: Successful exploitation will allow remote attackers to cause remote code execution, compromise system privileges or may cause exposure of sensitive information. Affected Software/OS: Adobe Flex version 3.x or 2.x Adobe AIR version prior to 1.5.1 Adobe Flash CS3/CS4 Professional Adobe Flash Player 9 version prior to 9.0.159.0 Adobe Flash Player 10 version prior to 10.0.22.87 Solution: Update to version 1.5.1 for Adobe Air. Update to Adobe Flash Player 9.0.159.0 or 10.0.22.87 and Adobe CS3/CS4, Flex 3. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-0114 http://lists.apple.com/archives/security-announce/2009/May/msg00002.html Cert/CC Advisory: TA09-133A http://www.us-cert.gov/cas/techalerts/TA09-133A.html http://security.gentoo.org/glsa/glsa-200903-23.xml http://isc.sans.org/diary.html?storyid=5929 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16419 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6662 http://securitytracker.com/id?1021751 http://secunia.com/advisories/34226 http://secunia.com/advisories/34293 http://secunia.com/advisories/35074 http://sunsolve.sun.com/search/document.do?assetkey=1-66-254909-1 http://www.vupen.com/english/advisories/2009/0513 http://www.vupen.com/english/advisories/2009/0743 http://www.vupen.com/english/advisories/2009/1297 XForce ISS Database: flash-settings-manager-click-hijacking(48902) https://exchange.xforce.ibmcloud.com/vulnerabilities/48902 Common Vulnerability Exposure (CVE) ID: CVE-2009-0519 BugTraq ID: 33890 http://www.securityfocus.com/bid/33890 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15837 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6470 RedHat Security Advisories: RHSA-2009:0332 http://rhn.redhat.com/errata/RHSA-2009-0332.html RedHat Security Advisories: RHSA-2009:0334 http://rhn.redhat.com/errata/RHSA-2009-0334.html http://secunia.com/advisories/34012 XForce ISS Database: flash-swf-unspecified-dos(48900) https://exchange.xforce.ibmcloud.com/vulnerabilities/48900 Common Vulnerability Exposure (CVE) ID: CVE-2009-0520 BugTraq ID: 33880 http://www.securityfocus.com/bid/33880 http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=773 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16057 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6593 http://securitytracker.com/id?1021750 XForce ISS Database: flash-invalid-object-bo(48887) https://exchange.xforce.ibmcloud.com/vulnerabilities/48887 Common Vulnerability Exposure (CVE) ID: CVE-2009-0522 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6674 http://securitytracker.com/id?1021752 XForce ISS Database: flash-unspecified-click-hijacking(48903) https://exchange.xforce.ibmcloud.com/vulnerabilities/48903
Copyright	Copyright (C) 2009 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.