CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
86.3%
Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2010-0209, CVE-2010-2213, and CVE-2010-2214.
Vendor | Product | Version | CPE |
---|---|---|---|
adobe | flash_player | 10.1.52.15 | cpe:/a:adobe:flash_player:10.1.52.15::: |
adobe | flash_player_for_linux | 9.0.151.0 | cpe:/a:adobe:flash_player_for_linux:9.0.151.0::: |
adobe | flash_player | 10.0.0.584 | cpe:/a:adobe:flash_player:10.0.0.584::: |
adobe | flash_player | 9.0.28.0 | cpe:/a:adobe:flash_player:9.0.28.0::: |
adobe | flash_player | 9.0 | cpe:/a:adobe:flash_player:9.0::: |
adobe | flash_player | 9.0.115.0 | cpe:/a:adobe:flash_player:9.0.115.0::: |
adobe | adobe_air | 1.5 | cpe:/a:adobe:adobe_air:1.5::: |
adobe | flash_player | 9.0.20.0 | cpe:/a:adobe:flash_player:9.0.20.0::: |
adobe | adobe_air | 1.0 | cpe:/a:adobe:adobe_air:1.0::: |
adobe | flash_player | 9.0.112.0 | cpe:/a:adobe:flash_player:9.0.112.0::: |
lists.apple.com/archives/security-announce/2010//Nov/msg00000.html
marc.info/?l=bugtraq&m=128767780602751&w=2
secunia.com/advisories/43026
security.gentoo.org/glsa/glsa-201101-09.xml
support.apple.com/kb/HT4435
www.adobe.com/support/security/bulletins/apsb10-16.html
www.securityfocus.com/bid/42362
www.securitytracker.com/id?1024621
www.vupen.com/english/advisories/2011/0192
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11977
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16177