{"containers":{"cna":{"affected":[{"product":"n/a","vendor":"n/a","versions":[{"status":"affected","version":"n/a"}]}],"datePublic":"2008-11-21T00:00:00.000Z","descriptions":[{"lang":"en","value":"The DefineConstantPool action in the ActionScript 2 virtual machine in Adobe Flash Player 10.x before 10.0.12.36 and 9.x before 9.0.151.0, and Adobe AIR before 1.5, accepts an untrusted input value for a \"constant count,\" which allows remote attackers to read sensitive data from process memory via a crafted PDF file."}],"problemTypes":[{"descriptions":[{"description":"n/a","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2018-10-11T19:57:01.000Z","orgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","shortName":"mitre"},"references":[{"name":"20081122 Adobe Flash Multiple Vulnerabilities","tags":["mailing-list","x_refsource_BUGTRAQ"],"url":"http://www.securityfocus.com/archive/1/498561/100/0/threaded"},{"name":"33390","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/33390"},{"tags":["x_refsource_MISC"],"url":"http://www.isecpartners.com/advisories/2008-01-flash.txt"},{"tags":["x_refsource_CONFIRM"],"url":"http://support.avaya.com/elmodocs2/security/ASA-2009-020.htm"},{"tags":["x_refsource_MISC"],"url":"http://www.adobe.com/support/security/bulletins/apsb08-22.html"},{"name":"34226","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/34226"},{"name":"4692","tags":["third-party-advisory","x_refsource_SREASON"],"url":"http://securityreason.com/securityalert/4692"},{"name":"GLSA-200903-23","tags":["vendor-advisory","x_refsource_GENTOO"],"url":"http://security.gentoo.org/glsa/glsa-200903-23.xml"},{"name":"248586","tags":["vendor-advisory","x_refsource_SUNALERT"],"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-26-248586-1"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"cve@mitre.org","ID":"CVE-2008-5362","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"The DefineConstantPool action in the ActionScript 2 virtual machine in Adobe Flash Player 10.x before 10.0.12.36 and 9.x before 9.0.151.0, and Adobe AIR before 1.5, accepts an untrusted input value for a \"constant count,\" which allows remote attackers to read sensitive data from process memory via a crafted PDF file."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"20081122 Adobe Flash Multiple Vulnerabilities","refsource":"BUGTRAQ","url":"http://www.securityfocus.com/archive/1/498561/100/0/threaded"},{"name":"33390","refsource":"SECUNIA","url":"http://secunia.com/advisories/33390"},{"name":"http://www.isecpartners.com/advisories/2008-01-flash.txt","refsource":"MISC","url":"http://www.isecpartners.com/advisories/2008-01-flash.txt"},{"name":"http://support.avaya.com/elmodocs2/security/ASA-2009-020.htm","refsource":"CONFIRM","url":"http://support.avaya.com/elmodocs2/security/ASA-2009-020.htm"},{"name":"http://www.adobe.com/support/security/bulletins/apsb08-22.html","refsource":"MISC","url":"http://www.adobe.com/support/security/bulletins/apsb08-22.html"},{"name":"34226","refsource":"SECUNIA","url":"http://secunia.com/advisories/34226"},{"name":"4692","refsource":"SREASON","url":"http://securityreason.com/securityalert/4692"},{"name":"GLSA-200903-23","refsource":"GENTOO","url":"http://security.gentoo.org/glsa/glsa-200903-23.xml"},{"name":"248586","refsource":"SUNALERT","url":"http://sunsolve.sun.com/search/document.do?assetkey=1-26-248586-1"}]}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-07T10:49:12.739Z"},"title":"CVE Program Container","references":[{"name":"20081122 Adobe Flash Multiple Vulnerabilities","tags":["mailing-list","x_refsource_BUGTRAQ","x_transferred"],"url":"http://www.securityfocus.com/archive/1/498561/100/0/threaded"},{"name":"33390","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/33390"},{"tags":["x_refsource_MISC","x_transferred"],"url":"http://www.isecpartners.com/advisories/2008-01-flash.txt"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://support.avaya.com/elmodocs2/security/ASA-2009-020.htm"},{"tags":["x_refsource_MISC","x_transferred"],"url":"http://www.adobe.com/support/security/bulletins/apsb08-22.html"},{"name":"34226","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/34226"},{"name":"4692","tags":["third-party-advisory","x_refsource_SREASON","x_transferred"],"url":"http://securityreason.com/securityalert/4692"},{"name":"GLSA-200903-23","tags":["vendor-advisory","x_refsource_GENTOO","x_transferred"],"url":"http://security.gentoo.org/glsa/glsa-200903-23.xml"},{"name":"248586","tags":["vendor-advisory","x_refsource_SUNALERT","x_transferred"],"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-26-248586-1"}]}]},"cveMetadata":{"assignerOrgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","assignerShortName":"mitre","cveId":"CVE-2008-5362","datePublished":"2008-12-08T11:00:00.000Z","dateReserved":"2008-12-07T00:00:00.000Z","dateUpdated":"2024-08-07T10:49:12.739Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}