CVE-2009-3794
published 2009-12-10CVE-2009-3794: Heap-based buffer overflow in Adobe Flash Player before 10.0.42.34 and Adobe AIR before 1.5.3 allows remote attackers to execute arbitrary code via crafted…
PriorityP347critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
11.56%
95.5th percentile
Heap-based buffer overflow in Adobe Flash Player before 10.0.42.34 and Adobe AIR before 1.5.3 allows remote attackers to execute arbitrary code via crafted dimensions of JPEG data in an SWF file.
Affected
43 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | adobe_air | <= 1.5.2 | — |
| adobe | adobe_air | — | — |
| adobe | adobe_air | — | — |
| adobe | adobe_air | — | — |
| adobe | adobe_air | — | — |
| adobe | flash_player | <= 10.0.32.18 | — |
| adobe | flash_player | — | — |
| adobe | flash_player | — | — |
| adobe | flash_player | — | — |
| adobe | flash_player | — | — |
| adobe | flash_player | — | — |
| adobe | flash_player | — | — |
| adobe | flash_player | — | — |
| adobe | flash_player | — | — |
| adobe | flash_player | — | — |
| adobe | flash_player | — | — |
| adobe | flash_player | — | — |
| adobe | flash_player | — | — |
| adobe | flash_player | — | — |
| adobe | flash_player | — | — |
| adobe | flash_player | — | — |
| adobe | flash_player | — | — |
| adobe | flash_player | — | — |
| adobe | flash_player | — | — |
| adobe | flash_player | — | — |
CVSS provenance
nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
vendor_redhat9.3CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
flash-plugin: multiple code execution flaws (APSB09-19) (CVE-2009-3794, CVE-2009-3796, CVE-2009-3797, CVE-2009-3798, CVE-2009-3799, CVE-2009-3800)
vendor_redhat·2009-12-08·CVSS 9.3
CVE-2009-3799 [CRITICAL] flash-plugin: multiple code execution flaws (APSB09-19) (CVE-2009-3794, CVE-2009-3796, CVE-2009-3797, CVE-2009-3798, CVE-2009-3799, CVE-2009-3800)
flash-plugin: multiple code execution flaws (APSB09-19) (CVE-2009-3794, CVE-2009-3796, CVE-2009-3797, CVE-2009-3798, CVE-2009-3799, CVE-2009-3800)
Integer overflow in the Verifier::parseExceptionHandlers function in Adobe Flash Player before 10.0.42.34 and Adobe AIR before 1.5.3 allows remote attackers to execute arbitrary code via an SWF file with a large exception_count value that triggers memory corruption, related to "generation of ActionScript exception handlers."
Red Hat
flash-plugin: multiple code execution flaws (APSB09-19) (CVE-2009-3794, CVE-2009-3796, CVE-2009-3797, CVE-2009-3798, CVE-2009-3799, CVE-2009-3800)
vendor_redhat·2009-12-08·CVSS 9.3
CVE-2009-3797 [CRITICAL] flash-plugin: multiple code execution flaws (APSB09-19) (CVE-2009-3794, CVE-2009-3796, CVE-2009-3797, CVE-2009-3798, CVE-2009-3799, CVE-2009-3800)
flash-plugin: multiple code execution flaws (APSB09-19) (CVE-2009-3794, CVE-2009-3796, CVE-2009-3797, CVE-2009-3798, CVE-2009-3799, CVE-2009-3800)
Adobe Flash Player 10.x before 10.0.42.34 and Adobe AIR before 1.5.3 might allow attackers to execute arbitrary code via unspecified vectors that trigger memory corruption.
Red Hat
flash-plugin: multiple code execution flaws (APSB09-19) (CVE-2009-3794, CVE-2009-3796, CVE-2009-3797, CVE-2009-3798, CVE-2009-3799, CVE-2009-3800)
vendor_redhat·2009-12-08·CVSS 9.3
CVE-2009-3794 [CRITICAL] flash-plugin: multiple code execution flaws (APSB09-19) (CVE-2009-3794, CVE-2009-3796, CVE-2009-3797, CVE-2009-3798, CVE-2009-3799, CVE-2009-3800)
flash-plugin: multiple code execution flaws (APSB09-19) (CVE-2009-3794, CVE-2009-3796, CVE-2009-3797, CVE-2009-3798, CVE-2009-3799, CVE-2009-3800)
Heap-based buffer overflow in Adobe Flash Player before 10.0.42.34 and Adobe AIR before 1.5.3 allows remote attackers to execute arbitrary code via crafted dimensions of JPEG data in an SWF file.
Red Hat
flash-plugin: multiple code execution flaws (APSB09-19) (CVE-2009-3794, CVE-2009-3796, CVE-2009-3797, CVE-2009-3798, CVE-2009-3799, CVE-2009-3800)
vendor_redhat·2009-12-08·CVSS 9.3
CVE-2009-3798 [CRITICAL] flash-plugin: multiple code execution flaws (APSB09-19) (CVE-2009-3794, CVE-2009-3796, CVE-2009-3797, CVE-2009-3798, CVE-2009-3799, CVE-2009-3800)
flash-plugin: multiple code execution flaws (APSB09-19) (CVE-2009-3794, CVE-2009-3796, CVE-2009-3797, CVE-2009-3798, CVE-2009-3799, CVE-2009-3800)
Adobe Flash Player before 10.0.42.34 and Adobe AIR before 1.5.3 might allow attackers to execute arbitrary code via unspecified vectors that trigger memory corruption.
Red Hat
flash-plugin: multiple code execution flaws (APSB09-19) (CVE-2009-3794, CVE-2009-3796, CVE-2009-3797, CVE-2009-3798, CVE-2009-3799, CVE-2009-3800)
vendor_redhat·2009-12-08·CVSS 9.3
CVE-2009-3800 [CRITICAL] flash-plugin: multiple code execution flaws (APSB09-19) (CVE-2009-3794, CVE-2009-3796, CVE-2009-3797, CVE-2009-3798, CVE-2009-3799, CVE-2009-3800)
flash-plugin: multiple code execution flaws (APSB09-19) (CVE-2009-3794, CVE-2009-3796, CVE-2009-3797, CVE-2009-3798, CVE-2009-3799, CVE-2009-3800)
Multiple unspecified vulnerabilities in Adobe Flash Player before 10.0.42.34 and Adobe AIR before 1.5.3 allow attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unknown vectors.
Red Hat
flash-plugin: multiple code execution flaws (APSB09-19) (CVE-2009-3794, CVE-2009-3796, CVE-2009-3797, CVE-2009-3798, CVE-2009-3799, CVE-2009-3800)
vendor_redhat·2009-12-08·CVSS 9.3
CVE-2009-3796 [CRITICAL] flash-plugin: multiple code execution flaws (APSB09-19) (CVE-2009-3794, CVE-2009-3796, CVE-2009-3797, CVE-2009-3798, CVE-2009-3799, CVE-2009-3800)
flash-plugin: multiple code execution flaws (APSB09-19) (CVE-2009-3794, CVE-2009-3796, CVE-2009-3797, CVE-2009-3798, CVE-2009-3799, CVE-2009-3800)
Adobe Flash Player before 10.0.42.34 and Adobe AIR before 1.5.3 might allow attackers to execute arbitrary code via unspecified vectors, related to a "data injection vulnerability."
GHSA
GHSA-rxh4-4wmm-564x: Heap-based buffer overflow in Adobe Flash Player before 10
ghsa_unreviewed·2022-05-02
CVE-2009-3794 [HIGH] CWE-119 GHSA-rxh4-4wmm-564x: Heap-based buffer overflow in Adobe Flash Player before 10
Heap-based buffer overflow in Adobe Flash Player before 10.0.42.34 and Adobe AIR before 1.5.3 allows remote attackers to execute arbitrary code via crafted dimensions of JPEG data in an SWF file.
No detection rules found.
No public exploits indexed.
http://lists.apple.com/archives/security-announce/2010/Jan/msg00000.htmlhttp://lists.opensuse.org/opensuse-security-announce/2009-12/msg00003.htmlhttp://osvdb.org/60885http://secunia.com/advisories/37584http://secunia.com/advisories/37902http://secunia.com/advisories/38241http://securitytracker.com/id?1023306http://securitytracker.com/id?1023307http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021716.1-1http://support.apple.com/kb/HT4004http://www.adobe.com/support/security/bulletins/apsb09-19.htmlhttp://www.redhat.com/support/errata/RHSA-2009-1657.htmlhttp://www.redhat.com/support/errata/RHSA-2009-1658.htmlhttp://www.securityfocus.com/archive/1/508336/100/0/threadedhttp://www.securityfocus.com/bid/37199http://www.us-cert.gov/cas/techalerts/TA09-343A.htmlhttp://www.vupen.com/english/advisories/2009/3456http://www.vupen.com/english/advisories/2010/0173http://zerodayinitiative.com/advisories/ZDI-09-092/https://bugzilla.redhat.com/show_bug.cgi?id=543857https://exchange.xforce.ibmcloud.com/vulnerabilities/54631https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15948https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7465https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8686http://lists.apple.com/archives/security-announce/2010/Jan/msg00000.htmlhttp://lists.opensuse.org/opensuse-security-announce/2009-12/msg00003.htmlhttp://osvdb.org/60885http://secunia.com/advisories/37584http://secunia.com/advisories/37902http://secunia.com/advisories/38241http://securitytracker.com/id?1023306http://securitytracker.com/id?1023307http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021716.1-1http://support.apple.com/kb/HT4004http://www.adobe.com/support/security/bulletins/apsb09-19.htmlhttp://www.redhat.com/support/errata/RHSA-2009-1657.htmlhttp://www.redhat.com/support/errata/RHSA-2009-1658.htmlhttp://www.securityfocus.com/archive/1/508336/100/0/threadedhttp://www.securityfocus.com/bid/37199http://www.us-cert.gov/cas/techalerts/TA09-343A.htmlhttp://www.vupen.com/english/advisories/2009/3456http://www.vupen.com/english/advisories/2010/0173http://zerodayinitiative.com/advisories/ZDI-09-092/https://bugzilla.redhat.com/show_bug.cgi?id=543857https://exchange.xforce.ibmcloud.com/vulnerabilities/54631https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15948https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7465https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8686
2009-12-10
Published