CVE-2008-4821

CVE Database · CVE-2008-4821

CVE-2008-4821

· N/AModified

CVSS v3.1

N/A

EPSS

5.14%

Published

Nov 10, 2008

Modified

Apr 22, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Adobe Flash Player 9.0.124.0 and earlier, when a Mozilla browser is used, does not properly interpret jar: URLs, which allows attackers to obtain sensitive information via unknown vectors.

Weaknesses (CWE)

CWE-200

Affected Products (23)

mozilla · camino

mozilla · firefox

mozilla · seamonkey

adobe · flash_playervulnerable

References (20)

http://lists.apple.com/archives/security-announce//2008//Dec/msg00000.html

http://secunia.com/advisories/32702

Vendor Advisory

http://secunia.com/advisories/33179

Vendor Advisory

http://secunia.com/advisories/33390

Vendor Advisory

http://secunia.com/advisories/34226

Vendor Advisory

http://security.gentoo.org/glsa/glsa-200903-23.xml

http://sunsolve.sun.com/search/document.do?assetkey=1-26-248586-1

http://support.apple.com/kb/HT3338

http://support.avaya.com/elmodocs2/security/ASA-2008-440.htm

KEV Catalog EPSS Scores Vendors All CVEs