CVE-2008-4503 — Adobe Flash Player vulnerability

4 documents4 sources

Severity

6.8MEDIUMNVD

EPSS

8.7%

top 7.49%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Adobe Flash Player

Timeline

PublishedOct 9

Latest updateMay 2

Description

The Settings Manager in Adobe Flash Player 9.0.124.0 and earlier allows remote attackers to cause victims to unknowingly click on a link or dialog via access control dialogs disguised as normal graphical elements, as demonstrated by hijacking the camera or microphone, and related to "clickjacking."

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages1 packages

▶NVDadobe/flash_player9.0.124.0+19

Patches

Patch: www.adobe.com ↗Patch: www.adobe.com ↗

🔴Vulnerability Details

GHSA

GHSA-7rhm-jv98-85qw: The Settings Manager in Adobe Flash Player 9↗2022-05-02

▶

📋Vendor Advisories

Red Hat

Adobe Flash Player clickjacking↗2008-10-07

▶

💬Community

Bugzilla

CVE-2008-4503 Adobe Flash Player clickjacking↗2008-10-09

▶