J-Security Center

Title: Retired: Adobe Flash Player Multiple Security Vulnerabilities

Severity: CRITICAL

Description:

Adobe Flash Player is a multimedia application for Microsoft Windows, Mozilla, and Apple technologies.

Adobe Flash Player is prone to multiple security vulnerabilities.

The following individual records have been created to document these vulnerabilities:

26960 Adobe Flash Player ActiveX Control 'navigateToURL' API Cross Domain Scripting Vulnerability
26951 Adobe Flash Player JPG Header Remote Heap Based Buffer Overflow Vulnerability
26949 Adobe Flash Player 'asfunction' Cross Site Scripting Vulnerability
26965 Adobe Flash Player Unspecified Privilege-Escalation Vulnerability
26969 Adobe Flash Player HTTP Response Splitting Vulnerability
26966 Adobe Flash Player Policy File Cross Domain Security Bypass Vulnerability

These issues affect Adobe Flash Player 9.0.48.0, 8.0.35.0, 7.0.70.0 and prior versions.

Affected Products:

  • Adobe Flash Player 7.0.69.0
  • Adobe Flash Player 8.0.34.0
  • Adobe Flash Player 9.0.28.0
  • Adobe Flash Player 9.0.31.0
  • Adobe Flash Player 9.0.45.0
  • Adobe Flash Player 9.0.47.0
  • Adobe Flash Player 9.0.48.0
  • RedHat Enterprise Linux Desktop Supplementary 5 client
  • RedHat Enterprise Linux Extras 3
  • RedHat Enterprise Linux Extras 4
  • RedHat Enterprise Linux Extras 4.5.z
  • RedHat Enterprise Linux Supplementary 5 server

References:

Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.