Adobe Flash Player 9.x up to 9.0.48.0, 8.x up to 8.0.35.0, and 7.x up to 7.0.70.0 does not sufficiently restrict the interpretation and usage of cross-domain policy files, which makes it easier for remote attackers to conduct cross-domain and cross-site scripting (XSS) attacks.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Flash_player | Adobe | * | 9.0.48.0 (including) |
| Extras for RHEL 3 | RedHat | flash-plugin-0:9.0.115.0-1.el3.with.oss | * |
| Extras for RHEL 3 | RedHat | flash-plugin-0:9.0.124.0-1.el3.with.oss | * |
| Extras for RHEL 3 | RedHat | flash-plugin-0:9.0.151.0-1.el3.with.oss | * |
| Extras for RHEL 4 | RedHat | flash-plugin-0:9.0.115.0-1.el4 | * |
| Extras for RHEL 4 | RedHat | flash-plugin-0:9.0.124.0-1.el4 | * |
| Extras for RHEL 4 | RedHat | flash-plugin-0:9.0.151.0-1.el4 | * |
| Supplementary for Red Hat Enterprise Linux 5 | RedHat | flash-plugin-0:9.0.115.0-1.el5 | * |
| Supplementary for Red Hat Enterprise Linux 5 | RedHat | flash-plugin-0:9.0.124.0-1.el5 | * |
| Supplementary for Red Hat Enterprise Linux 5 | RedHat | flash-plugin-0:10.0.12.36-2.el5 | * |
| Flashplugin-nonfree | Ubuntu | dapper | * |
| Flashplugin-nonfree | Ubuntu | edgy | * |
| Flashplugin-nonfree | Ubuntu | feisty | * |
| Flashplugin-nonfree | Ubuntu | gutsy | * |
| Flashplugin-nonfree | Ubuntu | upstream | * |