Upstream information
Description
Adobe Flash Player before 9.0.246.0 and 10.x before 10.0.32.18, and Adobe AIR before 1.5.2, allows attackers to obtain sensitive information via vectors involving saving an SWF file to a hard drive, related to a "local sandbox vulnerability."SUSE information
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
| National Vulnerability Database | |
|---|---|
| Base Score | 4.9 |
| Vector | AV:L/AC:L/Au:N/C:C/I:N/A:N |
| Access Vector | Local |
| Access Complexity | Low |
| Authentication | None |
| Confidentiality Impact | Complete |
| Integrity Impact | None |
| Availability Impact | None |
SUSE Security Advisories:
- SUSE-SA:2009:041, published Wed, 05 Aug 2009 14:00:00 +0000
List of released packages
| Product(s) | Fixed package version(s) | References |
|---|---|---|
| SUSE Linux Enterprise Desktop 12 SP1 |
| Patchnames: SUSE Linux Enterprise Desktop 12 SP1 GA flash-player-11.2.202.548-111.1 SUSE Linux Enterprise Workstation Extension 12 SP1 GA flash-player-11.2.202.548-111.1 |
| SUSE Linux Enterprise Desktop 12 |
| Patchnames: SUSE Linux Enterprise Desktop 12 GA flash-player-11.2.202.406-1.3 SUSE Linux Enterprise Workstation Extension 12 GA flash-player-11.2.202.406-1.3 |
| SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP1 |
| Patchnames: SUSE Linux Enterprise Workstation Extension 12 SP1 GA flash-player-11.2.202.548-111.1 |
| SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Workstation Extension 12 |
| Patchnames: SUSE Linux Enterprise Workstation Extension 12 GA flash-player-11.2.202.406-1.3 |
SUSE Timeline for this CVE
CVE page created: Tue Jul 9 16:38:58 2013CVE page last modified: Sat Jun 15 20:56:43 2024