CVE-2009-3794: Integer Overflow
First published: Thu Dec 03 2009(Updated: )
Heap-based buffer overflow in Adobe Flash Player before 10.0.42.34 and Adobe AIR before 1.5.3 allows remote attackers to execute arbitrary code via crafted dimensions of JPEG data in an SWF file.
Credit: psirt@adobe.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/flash-plugin | <0:9.0.260.0-1.el3 | 0:9.0.260.0-1.el3 |
| redhat/flash-plugin | <0:9.0.260.0-1.el4 | 0:9.0.260.0-1.el4 |
| redhat/flash-plugin | <0:10.0.42.34-1.el5 | 0:10.0.42.34-1.el5 |
| Adobe | =1.0 | |
| Macromedia Flash Player | =9.125.0 | |
| Adobe | =1.5.1 | |
| Macromedia Flash Player | =8.0.24.0 | |
| Macromedia Flash Player | =9.0.18d60 | |
| Macromedia Flash Player | =7.1.1 | |
| Macromedia Flash Player | =9.0.124.0 | |
| Macromedia Flash Player | =9.0.47.0 | |
| Macromedia Flash Player | =7.0.63 | |
| Macromedia Flash Player | =7.0.70.0 | |
| Macromedia Flash Player | =10.0.12.36 | |
| Macromedia Flash Player | =8.0.35.0 | |
| Macromedia Flash Player | =9.0.114.0 | |
| Macromedia Flash Player | =8.0 | |
| Macromedia Flash Player | =9.0.20.0 | |
| Macromedia Flash Player | =9.0.31.0 | |
| Macromedia Flash Player | =9.0.159.0 | |
| Macromedia Flash Player | =9.0.112.0 | |
| Macromedia Flash Player | =9.0.16 | |
| Macromedia Flash Player | =8 | |
| Macromedia Flash Player | =10.0.0.584 | |
| Macromedia Flash Player | =9.0.28.0 | |
| Macromedia Flash Player | =7.0.69.0 | |
| Macromedia Flash Player | =9.0.155.0 | |
| Macromedia Flash Player | =10.0.22.87 | |
| Macromedia Flash Player | =9.0.28 | |
| Macromedia Flash Player | =9.0.45.0 | |
| Macromedia Flash Player | =7.0 | |
| Macromedia Flash Player | =9.0.31 | |
| Macromedia Flash Player | =7.2 | |
| Adobe | <=1.5.2 | |
| Macromedia Flash Player | =9.0.115.0 | |
| Macromedia Flash Player | =7.0.25 | |
| Macromedia Flash Player | =8.0 | |
| Macromedia Flash Player | =8.0.39.0 | |
| Adobe | =1.0.1 | |
| Macromedia Flash Player | =8.0.34.0 | |
| Macromedia Flash Player | =8 | |
| Adobe | =1.1 | |
| Macromedia Flash Player | =7.1 | |
| Macromedia Flash Player | =10.0.12.10 | |
| Macromedia Flash Player | <=10.0.32.18 | |
| Macromedia Flash Player | =9.0.20 | |
| Macromedia Flash Player | =7.0.1 | |
| Macromedia Flash Player | =8.0 | |
| Macromedia Flash Player | =9.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.us-cert.gov/cas/techalerts/TA09-343A.html
- http://www.redhat.com/support/errata/RHSA-2009-1657.html
- http://securitytracker.com/id?1023307
- http://securitytracker.com/id?1023306
- https://bugzilla.redhat.com/show_bug.cgi?id=543857
- http://www.vupen.com/english/advisories/2009/3456
- http://www.redhat.com/support/errata/RHSA-2009-1658.html
- http://www.securityfocus.com/bid/37199
- http://zerodayinitiative.com/advisories/ZDI-09-092/
- http://secunia.com/advisories/37584
- http://www.adobe.com/support/security/bulletins/apsb09-19.html
- http://osvdb.org/60885
- http://lists.opensuse.org/opensuse-security-announce/2009-12/msg00003.html
- http://secunia.com/advisories/37902
- http://support.apple.com/kb/HT4004
- http://lists.apple.com/archives/security-announce/2010/Jan/msg00000.html
- http://secunia.com/advisories/38241
- http://www.vupen.com/english/advisories/2010/0173
- http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021716.1-1
- https://exchange.xforce.ibmcloud.com/vulnerabilities/54631
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8686
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7465
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15948
- http://www.securityfocus.com/archive/1/508336/100/0/threaded
- https://access.redhat.com/security/cve/CVE-2009-3794
- https://access.redhat.com/security/cve/CVE-2009-3796
- https://access.redhat.com/security/cve/CVE-2009-3797
- https://access.redhat.com/security/cve/CVE-2009-3798
- https://access.redhat.com/security/cve/CVE-2009-3799
- https://access.redhat.com/security/cve/CVE-2009-3800
- https://rhn.redhat.com/errata/RHSA-2009-1657.html
- https://rhn.redhat.com/errata/RHSA-2009-1658.html
- https://www.cve.org/CVERecord?id=CVE-2009-3794 https://nvd.nist.gov/vuln/detail/CVE-2009-3794
- https://access.redhat.com/errata/RHSA-2009:1658
- https://access.redhat.com/errata/RHSA-2009:1657
- https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3794.json
Frequently Asked Questions
What is the severity of CVE-2009-3794?
CVE-2009-3794 has a high severity rating due to its potential for remote code execution.
How do I fix CVE-2009-3794?
To fix CVE-2009-3794, update Adobe Flash Player to version 10.0.42.34 or later, or Adobe AIR to version 1.5.3 or later.
What systems are affected by CVE-2009-3794?
CVE-2009-3794 affects Adobe Flash Player versions before 10.0.42.34 and Adobe AIR versions prior to 1.5.3.
Can CVE-2009-3794 be exploited remotely?
Yes, CVE-2009-3794 can be exploited remotely through crafted SWF files.
What type of vulnerability is CVE-2009-3794 classified as?
CVE-2009-3794 is classified as a heap-based buffer overflow vulnerability.
- agent/type
- agent/remedy
- agent/first-publish-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2009-3794
- agent/references
- agent/author
- agent/severity
- agent/description
- collector/redhat-cve
- agent/software-canonical-lookup
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/trending
- agent/source
- agent/weakness
- agent/softwarecombine
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- package-manager/redhat
- vendor/adobe
- canonical/adobe
- version/adobe/1.0
- canonical/macromedia flash player
- version/macromedia flash player/9.125.0
- version/adobe/1.5.1
- version/macromedia flash player/8.0.24.0
- version/macromedia flash player/9.0.18d60
- version/macromedia flash player/7.1.1
- version/macromedia flash player/9.0.124.0
- version/macromedia flash player/9.0.47.0
- version/macromedia flash player/7.0.63
- version/macromedia flash player/7.0.70.0
- version/macromedia flash player/10.0.12.36
- version/macromedia flash player/8.0.35.0
- version/macromedia flash player/9.0.114.0
- version/macromedia flash player/8.0
- version/macromedia flash player/9.0.20.0
- version/macromedia flash player/9.0.31.0
- version/macromedia flash player/9.0.159.0
- version/macromedia flash player/9.0.112.0
- version/macromedia flash player/9.0.16
- version/macromedia flash player/8
- version/macromedia flash player/10.0.0.584
- version/macromedia flash player/9.0.28.0
- version/macromedia flash player/7.0.69.0
- version/macromedia flash player/9.0.155.0
- version/macromedia flash player/10.0.22.87
- version/macromedia flash player/9.0.28
- version/macromedia flash player/9.0.45.0
- version/macromedia flash player/7.0
- version/macromedia flash player/9.0.31
- version/macromedia flash player/7.2
- version/adobe/1.5.2
- version/macromedia flash player/9.0.115.0
- version/macromedia flash player/7.0.25
- version/macromedia flash player/8.0.39.0
- version/adobe/1.0.1
- version/macromedia flash player/8.0.34.0
- version/adobe/1.1
- version/macromedia flash player/7.1
- version/macromedia flash player/10.0.12.10
- version/macromedia flash player/10.0.32.18
- version/macromedia flash player/9.0.20
- version/macromedia flash player/7.0.1
- version/macromedia flash player/9.0