Oval Definition:oval:org.mitre.oval:def:16302
Revision Date:2013-02-04Version:3
Title:Adobe Flash Player SWF Version Null Pointer Dereference Denial of Service Vulnerability
Description:Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows remote web servers to cause a denial of service (NULL pointer dereference and browser crash) by returning a different response when an HTTP request is sent a second time, as demonstrated by two responses that provide SWF files with different SWF version numbers.
Family:macosClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2008-4546
Platform(s):Apple Mac OS X
Product(s):Adobe AIR
Adobe Flash Player
Definition Synopsis
  • Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64 installed
  • Adobe Flash Player is Installed
  • AND Flash version is before 9.0.277.0 or 10.x before 10.1.53.64
  • Version of Adobe Flash Player is less than 9.0.277.0
  • OR Adobe Flash Player 10.x before 10.1.53.64 installed
  • Adobe Flash Player 10 is Installed
  • AND Version of Adobe Flash Player is less than 10.1.53.64
  • OR Adobe AIR before 2.0.2.12610 is installed
  • Adobe AIR is installed
  • AND Version of Adobe AIR is less than 2.0.2.12610
  • BACK