VRDA Feed : Provides information for vulnerability impact analysis

VRDA Feed by

Vulnerability Response Decision Assistance Feed : Information for vulnerability impact analysis

Vulnerability Analysis Result (Revision No : 1)

VRDA-091210-002 ( CVE-2009-3794 | CVE-2009-3796 | CVE-2009-3797 | CVE-2009-3798 | CVE-2009-3799 | CVE-2009-3800 | CVE-2009-3951 )

Adobe Flash Player Updates for Multiple Vulnerabilities

http://www.adobe.com/support/security/bulletins/apsb09-19.html

Critical vulnerabilities have been identified in Adobe Flash Player version 10.0.32.18 and earlier. These vulnerabilities could cause the application to crash and could potentially allow an attacker to take control of the affected system.

About This Analysis Information

Analysis Information Provider:

JPCERT/CC

First Published:

2009-12-10

Source Information Category:

Advisory, Alert

Last Updated:

2009-12-10

Affected Product Tags

cpe:/a:adobe:adobe_air (Adobe Adobe Integrated Runtime)

cpe:/a:adobe:flash_player (Adobe Flash Player)

lapt:/a:adobe:flash:cs3::pro (Flash Professional)

lapt:/a:adobe:flash:cs4::pro (Flash CS4 Professional)

lapt:/a:adobe:flex (Adobe Flex)

Vulnerability Analysis Results

[Information Source Reliability]^[?]

Low^[?]

Medium^[?]

High^[?]

[Impact Level]^[?]

Low^[?]

Low-Medium^[?]

Medium-High^[?]

High^[?]

[Access Required]^[?]

Physical^[?]

Local^[?]

Non-routed^[?]

Routed^[?]

[Authentication]^[?]

Privileged^[?]

Standard^[?]

Limited^[?]

None or Unnecessary^[?]

[User Interaction Required]^[?]

Complex^[?]

Simple^[?]

None^[?]

[Technical Difficulty]^[?]

High^[?]

Medium-High^[?]

Low-Medium^[?]

Low^[?]

[Availability of Remediation]^[?]

Official Patch^[?]

Official Workaround^[?]

Unofficial Patch^[?]

None^[?]

[Incident Activity]^[?]

None^[?]

Exploit or PoC^[?]

Activity Observed^[?]

Alternatives

Common Vulnerabilities and Exposures (CVE) CVE-2009-3794

Common Vulnerabilities and Exposures (CVE) CVE-2009-3796

Common Vulnerabilities and Exposures (CVE) CVE-2009-3797

Common Vulnerabilities and Exposures (CVE) CVE-2009-3798

Common Vulnerabilities and Exposures (CVE) CVE-2009-3799

Common Vulnerabilities and Exposures (CVE) CVE-2009-3800

Common Vulnerabilities and Exposures (CVE) CVE-2009-3951

References