Adobe » Flash Player : Security Vulnerabilities, CVEs, Published In 2008 (XSS)
Cross-site scripting (XSS) vulnerability in Adobe Flash Player 9.0.124.0 and earlier allows remote attackers to inject arbitrary web script or HTML via vectors related to loose interpretation of an ActionScript attribute.
Max CVSS
4.3
EPSS Score
0.60%
Published
2008-11-10
Updated
2018-10-30
Cross-site scripting (XSS) vulnerability in Adobe Flash Player 9.0.124.0 and earlier allows remote attackers to inject arbitrary web script or HTML via vectors involving HTTP response headers.
Max CVSS
4.3
EPSS Score
0.72%
Published
2008-11-10
Updated
2018-10-30
Unspecified vulnerability in Adobe Flash Player 9.0.115.0 and earlier, and 8.0.39.0 and earlier, makes it easier for remote attackers to conduct DNS rebinding attacks via unknown vectors.
Max CVSS
4.3
EPSS Score
1.03%
Published
2008-04-09
Updated
2017-09-29
Multiple cross-site scripting (XSS) vulnerabilities in Adobe Flash Player allow remote attackers to inject arbitrary web script or HTML via a crafted SWF file, related to "pre-generated SWF files" and Adobe Dreamweaver CS3 or Adobe Acrobat Connect. NOTE: the asfunction: vector is already covered by CVE-2007-6244.1.
Max CVSS
4.3
EPSS Score
0.60%
Published
2008-01-04
Updated
2017-09-29
4 vulnerabilities found