VYPR
Unrated severityNVD Advisory· Published Oct 14, 2008· Updated Jun 16, 2026

CVE-2008-4546

CVE-2008-4546

Description

Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows remote web servers to cause a denial of service (NULL pointer dereference and browser crash) by returning a different response when an HTTP request is sent a second time, as demonstrated by two responses that provide SWF files with different SWF version numbers.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6
  • cpe:2.3:a:adobe:flash_player:10.0.12.10:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:adobe:flash_player:10.0.12.10:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:flash_player:9.0.112.0:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:flash_player:9.0.115.0:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:flash_player:9.0.45.0:*:*:*:*:*:*:*
    • (no CPE)range: <9.0.277.0, <10.1.53.64
  • Adobe Inc./Airllm-fuzzy
    Range: <2.0.2.12610

Patches

Vulnerability mechanics

References

32

News mentions

0

No linked articles in our index yet.