Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:2005E41D7FC86035CB526B0FFF88EBD8
HistoryAug 22, 2011 - 12:00 a.m.

Adobe Flash Player ActionScript Function Arguments Code Execution

2011-08-2200:00:00
SAINT Corporation
download.saintcorporation.com
22

EPSS

0.97

Percentile

99.8%

JSON

Added: 08/22/2011
CVE: CVE-2011-2110
BID: 48268
OSVDB: 73007

Background

Adobe Flash Player is a cross-platform browser plug-in providing visual enhancements for web pages.

Problem

The Adobe Flash Player ActionScript Engine is vulnerable to an information leak that can be leveraged to execute malicious code. An attacker can construct a malicious SWF file to execute arbitrary code. If the attacker persuades a victim to view a page containing this SWF file, the payload will be executed with the victim’s privileges.

Resolution

Upgrade to Adobe Flash Player 10.3.181.26 or higher.

References

<http://www.adobe.com/support/security/bulletins/apsb11-18.html&gt;

Limitations

This exploit has been tested against Adobe Flash Player 10.3.181.14, 10.3.181.22, and 10.3.181.23 on Windows XP SP3 English (DEP OptIn) and Windows 7 SP1 (DEP OptIn).

Platforms

Windows

Related

saint 3
nessus 9
seebug 2
nvd 1
threatpost 3
prion 1
securityvulns 1
suse 2
zdt 1
metasploit 1
canvas 1
openvas 4
cvelist 1
cve 1
checkpoint_advisories 1
freebsd 1
packetstorm 1
ubuntucve 1
redhat 1
exploitdb 1
gentoo 1
saint
saint
Adobe Flash Player ActionScript Function Arguments Code Execution
2011-08-22 00:00:00
Adobe Flash Player ActionScript Function Arguments Code Execution
2011-08-22 00:00:00
Adobe Flash Player ActionScript Function Arguments Code Execution
2011-08-22 00:00:00
nessus
nessus
openSUSE Security Update : flash-player (openSUSE-SU-2011:0637-1)
2014-06-13 00:00:00
openSUSE Security Update : flash-player (openSUSE-SU-2011:0637-1)
2014-06-13 00:00:00
Flash Player < 10.3.181.26 Multiple Vulnerabilities (APSB11-18)
2011-06-15 00:00:00
seebug
seebug
Adobe Flash Player AVM Verification Logic Array Indexing Code Execution
2014-07-01 00:00:00
Adobe Flash PlayerθΏœη¨‹ε†…ε­˜η ΄εζΌζ΄ž
2011-06-17 00:00:00
nvd
nvd
CVE-2011-2110
2011-06-16 23:55:02
threatpost
threatpost
Attackers Exploiting Critical Flash Bug Via Drive-By Download
2011-06-20 08:24:11
Zero Day Flaws Overvalued Says New Microsoft Report
2011-10-11 17:41:11
ExploitHub Offering Bounties – And Residuals – for Exploits
2011-10-05 13:11:31
prion
prion
Memory corruption
2011-06-16 23:55:00
securityvulns
securityvulns
Adobe Flash Player memory corruption
2011-06-17 00:00:00
suse
suse
flash-player: Update to 10.3.181.26 (critical)
2011-06-15 15:08:17
flash-player (critical)
2011-06-15 17:08:19
zdt
zdt
Adobe Flash Player AVM Verification Logic Array Indexing Code Execution
2012-06-20 00:00:00
metasploit
metasploit
Adobe Flash Player AVM Verification Logic Array Indexing Code Execution
2012-06-20 02:52:37
canvas
canvas
Immunity Canvas: FLASH_APSB11_18
2011-06-16 23:55:00
openvas
openvas
FreeBSD Ports: linux-flashplugin
2011-08-03 00:00:00
FreeBSD Ports: linux-flashplugin
2011-08-03 00:00:00
Gentoo Security Advisory GLSA 201110-11 (Adobe Flash Player)
2012-02-12 00:00:00
cvelist
cvelist
CVE-2011-2110
2011-06-16 23:00:00
cve
cve
CVE-2011-2110
2011-06-16 23:55:02
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player ActionScript Rest Array Memory Corruption (APSB11-18; CVE-2011-2110)
2011-06-22 00:00:00
freebsd
freebsd
linux-flashplugin -- remote code execution vulnerability
2011-05-13 00:00:00
packetstorm
packetstorm
Adobe Flash Player AVM Verification Logic Array Indexing Code Execution
2012-06-20 00:00:00
ubuntucve
ubuntucve
CVE-2011-2110
2011-06-16 00:00:00
redhat
redhat
(RHSA-2011:0869) Critical: flash-plugin security update
2011-06-15 00:00:00
exploitdb
exploitdb
Adobe Flash Player - AVM Verification Logic Array Indexing Code Execution (Metasploit)
2012-06-20 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2011-10-13 00:00:00

EPSS

0.97

Percentile

99.8%

JSON
Related for SAINT:2005E41D7FC86035CB526B0FFF88EBD8
saint3nessus9seebug2nvd1threatpost3prion1securityvulns1suse2zdt1metasploit1canvas1openvas4cvelist1cve1checkpoint_advisories1freebsd1packetstorm1ubuntucve1redhat1exploitdb1gentoo1