Lucene search

K
ubuntucveUbuntu.comUB:CVE-2011-2444
HistorySep 22, 2011 - 12:00 a.m.

CVE-2011-2444

2011-09-2200:00:00
ubuntu.com
ubuntu.com
11

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

EPSS

0.002

Percentile

62.0%

Cross-site scripting (XSS) vulnerability in Adobe Flash Player before
10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186.7
on Android, allows remote attackers to inject arbitrary web script or HTML
via a crafted URL, related to a “universal cross-site scripting issue,” as
exploited in the wild in September 2011.

OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarchadobe-flashplugin< 10.3.183.10-0lucid1UNKNOWN
ubuntu10.10noarchadobe-flashplugin< 10.3.183.10-0maverick1UNKNOWN
ubuntu11.04noarchadobe-flashplugin< 10.3.183.10-0natty1UNKNOWN
ubuntu10.04noarchflashplugin-nonfree< 10.3.183.10ubuntu0.10.04.1UNKNOWN
ubuntu10.10noarchflashplugin-nonfree< 10.3.183.10ubuntu0.10.10.1UNKNOWN
ubuntu11.04noarchflashplugin-nonfree< 10.3.183.10ubuntu0.11.04.1UNKNOWN

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

EPSS

0.002

Percentile

62.0%