cbcvebase.
CVE-2008-3873
published 2008-08-29

CVE-2008-3873: The System.setClipboard method in ActionScript in Adobe Flash Player 9.0.124.0 and earlier allows remote attackers to populate the clipboard with a URL that is…

PriorityP272medium4.3CVSS 2.0
AVNACMAuNCNINAP
ITWVulnCheck KEV
Exploited in the wild
EPSS
3.66%
88.2th percentile
The System.setClipboard method in ActionScript in Adobe Flash Player 9.0.124.0 and earlier allows remote attackers to populate the clipboard with a URL that is difficult to delete and does not require user interaction to populate the clipboard, as exploited in the wild in August 2008.

Detection & IOCsextracted from sources · hover to see the quote

urlhttp://raffon.net/research/flash/cb/test.html
versionAdobe Flash Player 9.0.124.0
  • Monitor for ActionScript calls to System.setClipboard method, which can silently populate the clipboard with attacker-controlled URLs without user interaction.
  • Flag clipboard contents that contain unexpected URLs following Flash content rendering, as this attack was exploited in the wild and requires no user interaction to place malicious URLs into the clipboard.
  • ·The vulnerability affects Adobe Flash Player 9.0.124.0 and all earlier versions; patched versions are addressed in RHSA-2008-0945 and RHSA-2008-0980.

CVSS provenance

nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:N/A:P
vulncheck4.3MEDIUM
vendor_redhat4.3MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.