Main Vulnerability Database Exploits ID:695 - Exploit for Denial of service in Adobe Flash Player and Adobe AIR - CVE-2008-4546

ID:695 - Exploit for Denial of service in Adobe Flash Player and Adobe AIR - CVE-2008-4546

Published: March 18, 2020

Vulnerability identifier: #VU3117

Vulnerability risk: Low

CVE-ID: CVE-2008-4546

CWE-ID: CWE-20

Exploitation vector: Remote access

Vulnerable software:
Adobe Flash Player
Adobe AIR

Link to public exploit:

https://www.exploit-db.com/exploits/32452/

Vulnerability description

The vulnerability allows a remote attacker to cause denial of service.

The vulnerability exists due to unknown error when processing .swf files. A remote attacker can create a specially crafted .swf file, trick the victim into opening it, and cause denial of service conditions.

Remediation

Install the latest version from vendor's website. The vulnerability is fixed in the following versions:

Flash Player 10.1.53.64
AIR 2.0.2.12610
Flash Professional CS5 10.1.53.64
Flash CS4 Professional and Flex 4 10.1.53.64
Flash CS3 Professional and Flex 3 9.0.277.0

ID:695 - Exploit for Denial of service in Adobe Flash Player and Adobe AIR - CVE-2008-4546

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human