Executive Summary
Summary | |
---|---|
Title | Adobe Flash Player: Multiple vulnerabilities |
Informations | |||
---|---|---|---|
Name | GLSA-201101-09 | First vendor Publication | 2011-01-21 |
Vendor | Gentoo | Last vendor Modification | 2011-01-21 |
Severity (Vendor) | Normal | Revision | N/A |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 9.3 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Medium |
Cvss Expoit Score | 8.6 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Synopsis Multiple vulnerabilities in Adobe Flash Player might allow remote attackers to execute arbitrary code or cause a Denial of Service. Background Description Impact Workaround Resolution References Availability http://security.gentoo.org/glsa/glsa-201101-09.xml |
Original Source
Url : http://security.gentoo.org/glsa/glsa-201101-09.xml |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
57 % | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
22 % | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
8 % | CWE-399 | Resource Management Errors |
8 % | CWE-189 | Numeric Errors (CWE/SANS Top 25) |
3 % | CWE-264 | Permissions, Privileges, and Access Controls |
3 % | CWE-79 | Failure to Preserve Web Page Structure ('Cross-site Scripting') (CWE/SANS Top 25) |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:10983 | |||
Oval ID: | oval:org.mitre.oval:def:10983 | ||
Title: | Adobe Flash Player and AIR Unspecified Multiple Memory Corruption Vulnerabilities | ||
Description: | Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2010-0209, CVE-2010-2214, and CVE-2010-2216. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2213 | Version: | 15 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:11310 | |||
Oval ID: | oval:org.mitre.oval:def:11310 | ||
Title: | Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64 | ||
Description: | Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to cause a denial of service or possibly execute arbitrary code via unknown vectors. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-3639 | Version: | 15 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:11461 | |||
Oval ID: | oval:org.mitre.oval:def:11461 | ||
Title: | Adobe Flash Player and AIR Unspecified Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2010-2213, CVE-2010-2214, and CVE-2010-2216. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-0209 | Version: | 15 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:11532 | |||
Oval ID: | oval:org.mitre.oval:def:11532 | ||
Title: | Adobe Flash Player and AIR Unspecified Click-jacking Vulnerability | ||
Description: | Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3, allows attackers to trick a user into (1) selecting a link or (2) completing a dialog, related to a "click-jacking" issue. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2215 | Version: | 15 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:11636 | |||
Oval ID: | oval:org.mitre.oval:def:11636 | ||
Title: | Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64 | ||
Description: | Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, and CVE-2010-3652. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-3650 | Version: | 15 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:11660 | |||
Oval ID: | oval:org.mitre.oval:def:11660 | ||
Title: | Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64 | ||
Description: | Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-3644 | Version: | 15 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:11842 | |||
Oval ID: | oval:org.mitre.oval:def:11842 | ||
Title: | Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64 | ||
Description: | Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-3648 | Version: | 16 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:11872 | |||
Oval ID: | oval:org.mitre.oval:def:11872 | ||
Title: | Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64 | ||
Description: | Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3650, and CVE-2010-3652. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-3649 | Version: | 16 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:11905 | |||
Oval ID: | oval:org.mitre.oval:def:11905 | ||
Title: | Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64 | ||
Description: | Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-3645 | Version: | 16 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:11922 | |||
Oval ID: | oval:org.mitre.oval:def:11922 | ||
Title: | Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64 | ||
Description: | Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-3646 | Version: | 16 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:11965 | |||
Oval ID: | oval:org.mitre.oval:def:11965 | ||
Title: | Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64 | ||
Description: | Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, and CVE-2010-3650. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-3652 | Version: | 16 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:11971 | |||
Oval ID: | oval:org.mitre.oval:def:11971 | ||
Title: | Adobe Flash Player and AIR Unspecified Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2010-0209, CVE-2010-2213, and CVE-2010-2216. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2214 | Version: | 16 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:11977 | |||
Oval ID: | oval:org.mitre.oval:def:11977 | ||
Title: | Adobe Flash Player and AIR Unspecified Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2010-0209, CVE-2010-2213, and CVE-2010-2214. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2216 | Version: | 16 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:12065 | |||
Oval ID: | oval:org.mitre.oval:def:12065 | ||
Title: | Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64 | ||
Description: | Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-3642 | Version: | 16 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:12095 | |||
Oval ID: | oval:org.mitre.oval:def:12095 | ||
Title: | Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64 | ||
Description: | Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-3647 | Version: | 16 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:12142 | |||
Oval ID: | oval:org.mitre.oval:def:12142 | ||
Title: | Vulnerability in parsing of a cross-domain policy file in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64 | ||
Description: | Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, does not properly handle unspecified encodings during the parsing of a cross-domain policy file, which allows remote web servers to bypass intended access restrictions via unknown vectors. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-3636 | Version: | 16 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:12151 | |||
Oval ID: | oval:org.mitre.oval:def:12151 | ||
Title: | Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64 | ||
Description: | Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-3643 | Version: | 16 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:12154 | |||
Oval ID: | oval:org.mitre.oval:def:12154 | ||
Title: | Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64 | ||
Description: | Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-3641 | Version: | 16 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:12179 | |||
Oval ID: | oval:org.mitre.oval:def:12179 | ||
Title: | Unspecified vulnerability which cause a denial of service (memory corruption) in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64 | ||
Description: | Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-3640 | Version: | 16 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:12625 | |||
Oval ID: | oval:org.mitre.oval:def:12625 | ||
Title: | Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64 | ||
Description: | Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to cause a denial of service or possibly execute arbitrary code via unknown vectors. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-3639 | Version: | 5 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:13294 | |||
Oval ID: | oval:org.mitre.oval:def:13294 | ||
Title: | Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris and 10.1.95.1 on Android, and authplay.dll (aka AuthPlayLib.bundle or libauthplay.so.0.0.0) in Adobe Reader and Acrobat 9.x through 9.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via crafted SWF content, as exploited in the wild in October 2010. | ||
Description: | Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris and 10.1.95.1 on Android, and authplay.dll (aka AuthPlayLib.bundle or libauthplay.so.0.0.0) in Adobe Reader and Acrobat 9.x through 9.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via crafted SWF content, as exploited in the wild in October 2010. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-3654 | Version: | 24 |
Platform(s): | Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe Acrobat Adobe Reader |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:14072 | |||
Oval ID: | oval:org.mitre.oval:def:14072 | ||
Title: | DEPRECATED: Adobe Flash Player 9 before 9.0.277.0 on unspecified UNIX platforms allows attackers to cause a denial of service via unknown vectors. | ||
Description: | Adobe Flash Player 9 before 9.0.277.0 on unspecified UNIX platforms allows attackers to cause a denial of service via unknown vectors. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2172 | Version: | 9 |
Platform(s): | Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows XP Microsoft Windows 2000 | Product(s): | Adobe Flash Player |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:15284 | |||
Oval ID: | oval:org.mitre.oval:def:15284 | ||
Title: | Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64 | ||
Description: | Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, and CVE-2010-3650. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-3652 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:15360 | |||
Oval ID: | oval:org.mitre.oval:def:15360 | ||
Title: | Adobe Flash Player Invalid Pointer Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors, related to an "invalid pointer vulnerability" and the newfunction (0x44) operator, a different vulnerability than CVE-2010-2173. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-2174 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:15437 | |||
Oval ID: | oval:org.mitre.oval:def:15437 | ||
Title: | Adobe Flash Player Multiple Heap Overflow Vulnerabilities | ||
Description: | Multiple heap-based buffer overflows in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors related to malformed (1) GIF or (2) JPEG data. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-2167 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:15525 | |||
Oval ID: | oval:org.mitre.oval:def:15525 | ||
Title: | Adobe Flash Player Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166, CVE-2010-2171, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2180, CVE-2010-2182, CVE-2010-2184, CVE-2010-2187, and CVE-2010-2188. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-2175 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:15541 | |||
Oval ID: | oval:org.mitre.oval:def:15541 | ||
Title: | Adobe Flash Player Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2171, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2180, CVE-2010-2182, CVE-2010-2184, CVE-2010-2187, and CVE-2010-2188. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-2166 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:15576 | |||
Oval ID: | oval:org.mitre.oval:def:15576 | ||
Title: | Adobe Flash Player Out Of Bounds Memory Indexing Vulnerability | ||
Description: | Array index error in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified "types of Adobe Flash code." | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-2161 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:15719 | |||
Oval ID: | oval:org.mitre.oval:def:15719 | ||
Title: | Adobe Flash Player Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166, CVE-2010-2171, CVE-2010-2175, CVE-2010-2177, CVE-2010-2178, CVE-2010-2180, CVE-2010-2182, CVE-2010-2184, CVE-2010-2187, and CVE-2010-2188. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-2176 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:15750 | |||
Oval ID: | oval:org.mitre.oval:def:15750 | ||
Title: | Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64 | ||
Description: | Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3650, and CVE-2010-3652. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-3649 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:15798 | |||
Oval ID: | oval:org.mitre.oval:def:15798 | ||
Title: | Adobe Flash Player Use-After-Free Vulnerability | ||
Description: | Use-after-free vulnerability in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors related to an unspecified "image type within a certain function." | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-2164 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:15913 | |||
Oval ID: | oval:org.mitre.oval:def:15913 | ||
Title: | Vulnerability in parsing of a cross-domain policy file in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64 | ||
Description: | Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, does not properly handle unspecified encodings during the parsing of a cross-domain policy file, which allows remote web servers to bypass intended access restrictions via unknown vectors. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-3636 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:15920 | |||
Oval ID: | oval:org.mitre.oval:def:15920 | ||
Title: | Adobe Flash Player Integer Overflow Vulnerability | ||
Description: | Integer overflow in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2170 and CVE-2010-2181. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-2183 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:15937 | |||
Oval ID: | oval:org.mitre.oval:def:15937 | ||
Title: | Adobe Flash Player Integer Overflow Vulnerability | ||
Description: | Integer overflow in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2170 and CVE-2010-2183. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-2181 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:15961 | |||
Oval ID: | oval:org.mitre.oval:def:15961 | ||
Title: | Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64 | ||
Description: | Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-3645 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:15965 | |||
Oval ID: | oval:org.mitre.oval:def:15965 | ||
Title: | Adobe Flash Player Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166, CVE-2010-2171, CVE-2010-2175, CVE-2010-2176, CVE-2010-2178, CVE-2010-2180, CVE-2010-2182, CVE-2010-2184, CVE-2010-2187, and CVE-2010-2188. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-2177 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:15966 | |||
Oval ID: | oval:org.mitre.oval:def:15966 | ||
Title: | Adobe Flash Player and AIR Unspecified Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2010-0209, CVE-2010-2213, and CVE-2010-2216. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-2214 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:15971 | |||
Oval ID: | oval:org.mitre.oval:def:15971 | ||
Title: | Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64 | ||
Description: | Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, and CVE-2010-3652. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-3650 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:15980 | |||
Oval ID: | oval:org.mitre.oval:def:15980 | ||
Title: | Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64 | ||
Description: | Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-3648 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:16020 | |||
Oval ID: | oval:org.mitre.oval:def:16020 | ||
Title: | Adobe Flash Player and AIR Unspecified Multiple Memory Corruption Vulnerabilities | ||
Description: | Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2010-0209, CVE-2010-2214, and CVE-2010-2216. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-2213 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:16022 | |||
Oval ID: | oval:org.mitre.oval:def:16022 | ||
Title: | Adobe Flash Player Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166, CVE-2010-2171, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2180, CVE-2010-2182, CVE-2010-2184, CVE-2010-2187, and CVE-2010-2188. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-2178 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:16029 | |||
Oval ID: | oval:org.mitre.oval:def:16029 | ||
Title: | Adobe Flash Player Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166, CVE-2010-2171, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2180, CVE-2010-2182, CVE-2010-2187, and CVE-2010-2188. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-2184 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:16052 | |||
Oval ID: | oval:org.mitre.oval:def:16052 | ||
Title: | Adobe Flash Player Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166, CVE-2010-2171, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2182, CVE-2010-2184, CVE-2010-2187, and CVE-2010-2188. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-2180 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:16056 | |||
Oval ID: | oval:org.mitre.oval:def:16056 | ||
Title: | Adobe Flash Player Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166, CVE-2010-2171, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2180, CVE-2010-2182, CVE-2010-2184, and CVE-2010-2188. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-2187 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:16083 | |||
Oval ID: | oval:org.mitre.oval:def:16083 | ||
Title: | Adobe Flash Player Memory Exhaustion Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via an invalid offset in an unspecified undocumented opcode in ActionScript Virtual Machine 2, related to getouterscope, a different vulnerability than CVE-2010-2165, CVE-2010-2166, CVE-2010-2171, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2180, CVE-2010-2182, CVE-2010-2184, CVE-2010-2187, and CVE-2010-2188. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-2160 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:16090 | |||
Oval ID: | oval:org.mitre.oval:def:16090 | ||
Title: | Adobe Flash Player Buffer Overflow Vulnerability | ||
Description: | Buffer overflow in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-2185 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:16106 | |||
Oval ID: | oval:org.mitre.oval:def:16106 | ||
Title: | Adobe Flash Player and AIR Unspecified Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2010-2213, CVE-2010-2214, and CVE-2010-2216. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-0209 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:16125 | |||
Oval ID: | oval:org.mitre.oval:def:16125 | ||
Title: | Adobe Flash Player and AIR Denial of Service Vulnerability | ||
Description: | Adobe Flash Player before 10.0.45.2 and Adobe AIR before 1.5.3.9130 allow remote attackers to cause a denial of service (application crash) via a modified SWF file. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-0187 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:16160 | |||
Oval ID: | oval:org.mitre.oval:def:16160 | ||
Title: | Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64 | ||
Description: | Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-3647 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:16161 | |||
Oval ID: | oval:org.mitre.oval:def:16161 | ||
Title: | Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64 | ||
Description: | Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-3641 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:16177 | |||
Oval ID: | oval:org.mitre.oval:def:16177 | ||
Title: | Adobe Flash Player and AIR Unspecified Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2010-0209, CVE-2010-2213, and CVE-2010-2214. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-2216 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:16183 | |||
Oval ID: | oval:org.mitre.oval:def:16183 | ||
Title: | Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64 | ||
Description: | Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-3646 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:16192 | |||
Oval ID: | oval:org.mitre.oval:def:16192 | ||
Title: | Adobe Flash Player and AIR Unspecified Click-jacking Vulnerability | ||
Description: | Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3, allows attackers to trick a user into (1) selecting a link or (2) completing a dialog, related to a "click-jacking" issue. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-2215 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:16220 | |||
Oval ID: | oval:org.mitre.oval:def:16220 | ||
Title: | Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64 | ||
Description: | Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-3644 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:16223 | |||
Oval ID: | oval:org.mitre.oval:def:16223 | ||
Title: | Adobe Flash Player Memory Exhaustion Vulnerability | ||
Description: | Unspecified vulnerability in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory consumption) or possibly execute arbitrary code via unknown vectors. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2009-3793 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:16225 | |||
Oval ID: | oval:org.mitre.oval:def:16225 | ||
Title: | Adobe Flash Player Pointer Memory Corruption | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allow attackers to cause a denial of service (pointer memory corruption) or possibly execute arbitrary code via unspecified vectors. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-2169 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:16242 | |||
Oval ID: | oval:org.mitre.oval:def:16242 | ||
Title: | Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64 | ||
Description: | Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-3643 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:16254 | |||
Oval ID: | oval:org.mitre.oval:def:16254 | ||
Title: | Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64 | ||
Description: | Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-3642 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:16261 | |||
Oval ID: | oval:org.mitre.oval:def:16261 | ||
Title: | Adobe Flash Player Invalid Pointer Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors, related to an "invalid pointer vulnerability" and the newclass (0x58) operator, a different vulnerability than CVE-2010-2174. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-2173 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:16271 | |||
Oval ID: | oval:org.mitre.oval:def:16271 | ||
Title: | Adobe Flash Player Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code by calling the ActionScript native object 2200 connect method multiple times with different arguments, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166, CVE-2010-2171, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2180, CVE-2010-2182, CVE-2010-2184, and CVE-2010-2187. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-2188 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:16281 | |||
Oval ID: | oval:org.mitre.oval:def:16281 | ||
Title: | Unspecified vulnerability which cause a denial of service (memory corruption) in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64 | ||
Description: | Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-3640 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:16283 | |||
Oval ID: | oval:org.mitre.oval:def:16283 | ||
Title: | Adobe Flash Player Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166, CVE-2010-2171, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2180, CVE-2010-2184, CVE-2010-2187, and CVE-2010-2188. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-2182 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:16285 | |||
Oval ID: | oval:org.mitre.oval:def:16285 | ||
Title: | Adobe Flash Player Denial of Service Vulnerability | ||
Description: | Unspecified vulnerability in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unknown vectors. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-2186 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:16302 | |||
Oval ID: | oval:org.mitre.oval:def:16302 | ||
Title: | Adobe Flash Player SWF Version Null Pointer Dereference Denial of Service Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows remote web servers to cause a denial of service (NULL pointer dereference and browser crash) by returning a different response when an HTTP request is sent a second time, as demonstrated by two responses that provide SWF files with different SWF version numbers. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2008-4546 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:16316 | |||
Oval ID: | oval:org.mitre.oval:def:16316 | ||
Title: | Adobe Flash Player Multiple Vulnerabilities that could lead to code execution | ||
Description: | Multiple unspecified vulnerabilities in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unknown vectors. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-2163 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:16341 | |||
Oval ID: | oval:org.mitre.oval:def:16341 | ||
Title: | Adobe Flash Player Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via vectors related to SWF files, decompression of embedded JPEG image data, and the DefineBits and other unspecified tags, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2180, CVE-2010-2182, CVE-2010-2184, CVE-2010-2187, and CVE-2010-2188. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-2171 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:16345 | |||
Oval ID: | oval:org.mitre.oval:def:16345 | ||
Title: | Adobe Flash Player Heap Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (heap memory corruption) or possibly execute arbitrary code via vectors related to improper length calculation and the (1) STSC, (2) STSZ, and (3) STCO atoms. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-2162 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:16348 | |||
Oval ID: | oval:org.mitre.oval:def:16348 | ||
Title: | Adobe Flash Player Integer Overflow Vulnerability | ||
Description: | Integer overflow in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2181 and CVE-2010-2183. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-2170 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:16350 | |||
Oval ID: | oval:org.mitre.oval:def:16350 | ||
Title: | Adobe Flash Player Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2160, CVE-2010-2166, CVE-2010-2171, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2180, CVE-2010-2182, CVE-2010-2184, CVE-2010-2187, and CVE-2010-2188. | ||
Family: | macos | Class: | vulnerability |
Reference(s): | CVE-2010-2165 | Version: | 3 |
Platform(s): | Apple Mac OS X | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:21893 | |||
Oval ID: | oval:org.mitre.oval:def:21893 | ||
Title: | RHSA-2010:0102: flash-plugin security update (Important) | ||
Description: | Adobe Flash Player before 10.0.45.2 and Adobe AIR before 1.5.3.9130 allow remote attackers to cause a denial of service (application crash) via a modified SWF file. | ||
Family: | unix | Class: | patch |
Reference(s): | RHSA-2010:0102-01 CVE-2010-0186 CVE-2010-0187 | Version: | 29 |
Platform(s): | Red Hat Enterprise Linux 5 | Product(s): | flash-plugin |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:21982 | |||
Oval ID: | oval:org.mitre.oval:def:21982 | ||
Title: | RHSA-2010:0706: flash-plugin security update (Critical) | ||
Description: | Adobe Flash Player 10.1.82.76 and earlier on Windows, Mac OS X, Linux, and Solaris and 10.1.92.10 on Android; authplay.dll in Adobe Reader and Acrobat 9.x before 9.4; and authplay.dll in Adobe Reader and Acrobat 8.x before 8.2.5 on Windows and Mac OS X allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, as exploited in the wild in September 2010. | ||
Family: | unix | Class: | patch |
Reference(s): | RHSA-2010:0706-01 CVE-2010-2884 | Version: | 4 |
Platform(s): | Red Hat Enterprise Linux 5 | Product(s): | flash-plugin |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:22053 | |||
Oval ID: | oval:org.mitre.oval:def:22053 | ||
Title: | RHSA-2010:0464: flash-plugin security update (Critical) | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code by calling the ActionScript native object 2200 connect method multiple times with different arguments, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166, CVE-2010-2171, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2180, CVE-2010-2182, CVE-2010-2184, and CVE-2010-2187. | ||
Family: | unix | Class: | patch |
Reference(s): | RHSA-2010:0464-01 CVE-2008-4546 CVE-2009-3793 CVE-2010-1297 CVE-2010-2160 CVE-2010-2161 CVE-2010-2162 CVE-2010-2163 CVE-2010-2164 CVE-2010-2165 CVE-2010-2166 CVE-2010-2167 CVE-2010-2169 CVE-2010-2170 CVE-2010-2171 CVE-2010-2173 CVE-2010-2174 CVE-2010-2175 CVE-2010-2176 CVE-2010-2177 CVE-2010-2178 CVE-2010-2179 CVE-2010-2180 CVE-2010-2181 CVE-2010-2182 CVE-2010-2183 CVE-2010-2184 CVE-2010-2185 CVE-2010-2186 CVE-2010-2187 CVE-2010-2188 | Version: | 393 |
Platform(s): | Red Hat Enterprise Linux 5 | Product(s): | flash-plugin |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:22102 | |||
Oval ID: | oval:org.mitre.oval:def:22102 | ||
Title: | RHSA-2010:0867: flash-plugin security update (Critical) | ||
Description: | Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris and 10.1.95.1 on Android, and authplay.dll (aka AuthPlayLib.bundle or libauthplay.so.0.0.0) in Adobe Reader and Acrobat 9.x through 9.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via crafted SWF content, as exploited in the wild in October 2010. | ||
Family: | unix | Class: | patch |
Reference(s): | RHSA-2010:0867-02 CVE-2010-3636 CVE-2010-3639 CVE-2010-3640 CVE-2010-3641 CVE-2010-3642 CVE-2010-3643 CVE-2010-3644 CVE-2010-3645 CVE-2010-3646 CVE-2010-3647 CVE-2010-3648 CVE-2010-3649 CVE-2010-3650 CVE-2010-3652 CVE-2010-3654 | Version: | 198 |
Platform(s): | Red Hat Enterprise Linux 6 | Product(s): | flash-plugin |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:22325 | |||
Oval ID: | oval:org.mitre.oval:def:22325 | ||
Title: | RHSA-2010:0829: flash-plugin security update (Critical) | ||
Description: | Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris and 10.1.95.1 on Android, and authplay.dll (aka AuthPlayLib.bundle or libauthplay.so.0.0.0) in Adobe Reader and Acrobat 9.x through 9.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via crafted SWF content, as exploited in the wild in October 2010. | ||
Family: | unix | Class: | patch |
Reference(s): | RHSA-2010:0829-01 CVE-2010-3636 CVE-2010-3639 CVE-2010-3640 CVE-2010-3641 CVE-2010-3642 CVE-2010-3643 CVE-2010-3644 CVE-2010-3645 CVE-2010-3646 CVE-2010-3647 CVE-2010-3648 CVE-2010-3649 CVE-2010-3650 CVE-2010-3652 CVE-2010-3654 | Version: | 198 |
Platform(s): | Red Hat Enterprise Linux 5 | Product(s): | flash-plugin |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:22378 | |||
Oval ID: | oval:org.mitre.oval:def:22378 | ||
Title: | RHSA-2010:0623: flash-plugin security update (Critical) | ||
Description: | Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2010-0209, CVE-2010-2213, and CVE-2010-2214. | ||
Family: | unix | Class: | patch |
Reference(s): | RHSA-2010:0623-01 CVE-2010-0209 CVE-2010-2213 CVE-2010-2214 CVE-2010-2215 CVE-2010-2216 | Version: | 68 |
Platform(s): | Red Hat Enterprise Linux 5 | Product(s): | flash-plugin |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:22822 | |||
Oval ID: | oval:org.mitre.oval:def:22822 | ||
Title: | ELSA-2010:0623: flash-plugin security update (Critical) | ||
Description: | Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2010-0209, CVE-2010-2213, and CVE-2010-2214. | ||
Family: | unix | Class: | patch |
Reference(s): | ELSA-2010:0623-01 CVE-2010-0209 CVE-2010-2213 CVE-2010-2214 CVE-2010-2215 CVE-2010-2216 | Version: | 25 |
Platform(s): | Oracle Linux 5 | Product(s): | flash-plugin |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:22997 | |||
Oval ID: | oval:org.mitre.oval:def:22997 | ||
Title: | ELSA-2010:0464: flash-plugin security update (Critical) | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code by calling the ActionScript native object 2200 connect method multiple times with different arguments, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166, CVE-2010-2171, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2180, CVE-2010-2182, CVE-2010-2184, and CVE-2010-2187. | ||
Family: | unix | Class: | patch |
Reference(s): | ELSA-2010:0464-01 CVE-2008-4546 CVE-2009-3793 CVE-2010-1297 CVE-2010-2160 CVE-2010-2161 CVE-2010-2162 CVE-2010-2163 CVE-2010-2164 CVE-2010-2165 CVE-2010-2166 CVE-2010-2167 CVE-2010-2169 CVE-2010-2170 CVE-2010-2171 CVE-2010-2173 CVE-2010-2174 CVE-2010-2175 CVE-2010-2176 CVE-2010-2177 CVE-2010-2178 CVE-2010-2179 CVE-2010-2180 CVE-2010-2181 CVE-2010-2182 CVE-2010-2183 CVE-2010-2184 CVE-2010-2185 CVE-2010-2186 CVE-2010-2187 CVE-2010-2188 | Version: | 125 |
Platform(s): | Oracle Linux 5 | Product(s): | flash-plugin |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:23015 | |||
Oval ID: | oval:org.mitre.oval:def:23015 | ||
Title: | ELSA-2010:0102: flash-plugin security update (Important) | ||
Description: | Adobe Flash Player before 10.0.45.2 and Adobe AIR before 1.5.3.9130 allow remote attackers to cause a denial of service (application crash) via a modified SWF file. | ||
Family: | unix | Class: | patch |
Reference(s): | ELSA-2010:0102-01 CVE-2010-0186 CVE-2010-0187 | Version: | 13 |
Platform(s): | Oracle Linux 5 | Product(s): | flash-plugin |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:23120 | |||
Oval ID: | oval:org.mitre.oval:def:23120 | ||
Title: | ELSA-2010:0706: flash-plugin security update (Critical) | ||
Description: | Adobe Flash Player 10.1.82.76 and earlier on Windows, Mac OS X, Linux, and Solaris and 10.1.92.10 on Android; authplay.dll in Adobe Reader and Acrobat 9.x before 9.4; and authplay.dll in Adobe Reader and Acrobat 8.x before 8.2.5 on Windows and Mac OS X allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, as exploited in the wild in September 2010. | ||
Family: | unix | Class: | patch |
Reference(s): | ELSA-2010:0706-01 CVE-2010-2884 | Version: | 6 |
Platform(s): | Oracle Linux 5 | Product(s): | flash-plugin |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:23206 | |||
Oval ID: | oval:org.mitre.oval:def:23206 | ||
Title: | ELSA-2010:0829: flash-plugin security update (Critical) | ||
Description: | Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris and 10.1.95.1 on Android, and authplay.dll (aka AuthPlayLib.bundle or libauthplay.so.0.0.0) in Adobe Reader and Acrobat 9.x through 9.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via crafted SWF content, as exploited in the wild in October 2010. | ||
Family: | unix | Class: | patch |
Reference(s): | ELSA-2010:0829-01 CVE-2010-3636 CVE-2010-3639 CVE-2010-3640 CVE-2010-3641 CVE-2010-3642 CVE-2010-3643 CVE-2010-3644 CVE-2010-3645 CVE-2010-3646 CVE-2010-3647 CVE-2010-3648 CVE-2010-3649 CVE-2010-3650 CVE-2010-3652 CVE-2010-3654 | Version: | 65 |
Platform(s): | Oracle Linux 5 | Product(s): | flash-plugin |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:23533 | |||
Oval ID: | oval:org.mitre.oval:def:23533 | ||
Title: | ELSA-2010:0867: flash-plugin security update (Critical) | ||
Description: | Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris and 10.1.95.1 on Android, and authplay.dll (aka AuthPlayLib.bundle or libauthplay.so.0.0.0) in Adobe Reader and Acrobat 9.x through 9.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via crafted SWF content, as exploited in the wild in October 2010. | ||
Family: | unix | Class: | patch |
Reference(s): | ELSA-2010:0867-02 CVE-2010-3636 CVE-2010-3639 CVE-2010-3640 CVE-2010-3641 CVE-2010-3642 CVE-2010-3643 CVE-2010-3644 CVE-2010-3645 CVE-2010-3646 CVE-2010-3647 CVE-2010-3648 CVE-2010-3649 CVE-2010-3650 CVE-2010-3652 CVE-2010-3654 | Version: | 65 |
Platform(s): | Oracle Linux 6 | Product(s): | flash-plugin |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:6758 | |||
Oval ID: | oval:org.mitre.oval:def:6758 | ||
Title: | Adobe Flash Player Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166, CVE-2010-2171, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2180, CVE-2010-2184, CVE-2010-2187, and CVE-2010-2188. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2182 | Version: | 17 |
Platform(s): | Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:6762 | |||
Oval ID: | oval:org.mitre.oval:def:6762 | ||
Title: | Adobe Flash Player Invalid Pointer Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors, related to an "invalid pointer vulnerability" and the newclass (0x58) operator, a different vulnerability than CVE-2010-2174. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2173 | Version: | 17 |
Platform(s): | Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:6765 | |||
Oval ID: | oval:org.mitre.oval:def:6765 | ||
Title: | Adobe Flash Player Use-After-Free Vulnerability | ||
Description: | Use-after-free vulnerability in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors related to an unspecified "image type within a certain function." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2164 | Version: | 17 |
Platform(s): | Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:6766 | |||
Oval ID: | oval:org.mitre.oval:def:6766 | ||
Title: | Adobe Flash Player Integer Overflow Vulnerability | ||
Description: | Integer overflow in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2181 and CVE-2010-2183. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2170 | Version: | 17 |
Platform(s): | Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:6781 | |||
Oval ID: | oval:org.mitre.oval:def:6781 | ||
Title: | Adobe Flash Player Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2160, CVE-2010-2166, CVE-2010-2171, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2180, CVE-2010-2182, CVE-2010-2184, CVE-2010-2187, and CVE-2010-2188. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2165 | Version: | 17 |
Platform(s): | Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:6852 | |||
Oval ID: | oval:org.mitre.oval:def:6852 | ||
Title: | Adobe Flash Player, Acrobat Reader, and Acrobat Remote Code Execution Vulnerability | ||
Description: | Adobe Flash Player 10.1.82.76 and earlier on Windows, Mac OS X, Linux, and Solaris and 10.1.92.10 on Android; authplay.dll in Adobe Reader and Acrobat 9.x before 9.4; and authplay.dll in Adobe Reader and Acrobat 8.x before 8.2.5 on Windows and Mac OS X allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, as exploited in the wild in September 2010. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2884 | Version: | 27 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe Reader Adobe Acrobat |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:6903 | |||
Oval ID: | oval:org.mitre.oval:def:6903 | ||
Title: | Adobe Flash Player Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166, CVE-2010-2171, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2180, CVE-2010-2182, CVE-2010-2184, CVE-2010-2187, and CVE-2010-2188. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2175 | Version: | 17 |
Platform(s): | Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:6926 | |||
Oval ID: | oval:org.mitre.oval:def:6926 | ||
Title: | Untrusted search path vulnerability in Adobe Flash Player version less than 9.0.289.0 and 10.x before 10.1.102.64 | ||
Description: | Untrusted search path vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a file that is processed by Flash Player. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-3976 | Version: | 17 |
Platform(s): | Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:6946 | |||
Oval ID: | oval:org.mitre.oval:def:6946 | ||
Title: | Adobe Flash Player Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code by calling the ActionScript native object 2200 connect method multiple times with different arguments, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166, CVE-2010-2171, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2180, CVE-2010-2182, CVE-2010-2184, and CVE-2010-2187. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2188 | Version: | 18 |
Platform(s): | Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:6991 | |||
Oval ID: | oval:org.mitre.oval:def:6991 | ||
Title: | Adobe Flash Player Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, when used in conjunction with VMWare Tools on a VMWare platform, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2189 | Version: | 18 |
Platform(s): | Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:6999 | |||
Oval ID: | oval:org.mitre.oval:def:6999 | ||
Title: | Adobe Flash Player Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via vectors related to SWF files, decompression of embedded JPEG image data, and the DefineBits and other unspecified tags, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2180, CVE-2010-2182, CVE-2010-2184, CVE-2010-2187, and CVE-2010-2188. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2171 | Version: | 18 |
Platform(s): | Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:7014 | |||
Oval ID: | oval:org.mitre.oval:def:7014 | ||
Title: | Adobe Flash Player Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166, CVE-2010-2171, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2182, CVE-2010-2184, CVE-2010-2187, and CVE-2010-2188. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2180 | Version: | 18 |
Platform(s): | Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:7096 | |||
Oval ID: | oval:org.mitre.oval:def:7096 | ||
Title: | Adobe Flash Player Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166, CVE-2010-2171, CVE-2010-2175, CVE-2010-2176, CVE-2010-2178, CVE-2010-2180, CVE-2010-2182, CVE-2010-2184, CVE-2010-2187, and CVE-2010-2188. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2177 | Version: | 18 |
Platform(s): | Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:7116 | |||
Oval ID: | oval:org.mitre.oval:def:7116 | ||
Title: | Adobe Flash Player, Acrobat Reader, and Acrobat 'authplay.dll' Remote Code Execution Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64; Adobe AIR before 2.0.2.12610; and Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Windows and Mac OS X, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted SWF content, related to authplay.dll and the ActionScript Virtual Machine 2 (AVM2) newfunction instruction, as exploited in the wild in June 2010. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-1297 | Version: | 30 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe Reader Adobe Acrobat |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:7118 | |||
Oval ID: | oval:org.mitre.oval:def:7118 | ||
Title: | Adobe Flash Player Denial of Service Vulnerability | ||
Description: | Unspecified vulnerability in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unknown vectors. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2186 | Version: | 18 |
Platform(s): | Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:7126 | |||
Oval ID: | oval:org.mitre.oval:def:7126 | ||
Title: | Adobe Flash Player URL Parsing Vulnerability that could lead to cross-site scripting (Firefox and Chrome browsers only) | ||
Description: | Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, when Firefox or Chrome is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to URL parsing. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2179 | Version: | 21 |
Platform(s): | Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR Google Chrome Mozilla Firefox |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:7166 | |||
Oval ID: | oval:org.mitre.oval:def:7166 | ||
Title: | Adobe Flash Player Heap Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (heap memory corruption) or possibly execute arbitrary code via vectors related to improper length calculation and the (1) STSC, (2) STSZ, and (3) STCO atoms. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2162 | Version: | 18 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:7187 | |||
Oval ID: | oval:org.mitre.oval:def:7187 | ||
Title: | Adobe Flash Player SWF Version Null Pointer Dereference Denial of Service Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows remote web servers to cause a denial of service (NULL pointer dereference and browser crash) by returning a different response when an HTTP request is sent a second time, as demonstrated by two responses that provide SWF files with different SWF version numbers. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2008-4546 | Version: | 18 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:7205 | |||
Oval ID: | oval:org.mitre.oval:def:7205 | ||
Title: | Adobe Flash Player Memory Exhaustion Vulnerability | ||
Description: | Unspecified vulnerability in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory consumption) or possibly execute arbitrary code via unknown vectors. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2009-3793 | Version: | 18 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:7266 | |||
Oval ID: | oval:org.mitre.oval:def:7266 | ||
Title: | Adobe Flash Player Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166, CVE-2010-2171, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2180, CVE-2010-2182, CVE-2010-2184, and CVE-2010-2188. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2187 | Version: | 18 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:7276 | |||
Oval ID: | oval:org.mitre.oval:def:7276 | ||
Title: | Adobe Flash Player Pointer Memory Corruption | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allow attackers to cause a denial of service (pointer memory corruption) or possibly execute arbitrary code via unspecified vectors. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2169 | Version: | 18 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:7278 | |||
Oval ID: | oval:org.mitre.oval:def:7278 | ||
Title: | Adobe Flash Player Integer Overflow Vulnerability | ||
Description: | Integer overflow in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2170 and CVE-2010-2181. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2183 | Version: | 18 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:7303 | |||
Oval ID: | oval:org.mitre.oval:def:7303 | ||
Title: | Adobe Flash Player Out Of Bounds Memory Indexing Vulnerability | ||
Description: | Array index error in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified "types of Adobe Flash code." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2161 | Version: | 18 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:7334 | |||
Oval ID: | oval:org.mitre.oval:def:7334 | ||
Title: | Adobe Flash Player Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166, CVE-2010-2171, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2180, CVE-2010-2182, CVE-2010-2187, and CVE-2010-2188. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2184 | Version: | 18 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:7342 | |||
Oval ID: | oval:org.mitre.oval:def:7342 | ||
Title: | Adobe Flash Player Integer Overflow Vulnerability | ||
Description: | Integer overflow in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2170 and CVE-2010-2183. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2181 | Version: | 18 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:7364 | |||
Oval ID: | oval:org.mitre.oval:def:7364 | ||
Title: | Adobe Flash Player Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166, CVE-2010-2171, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2180, CVE-2010-2182, CVE-2010-2184, CVE-2010-2187, and CVE-2010-2188. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2178 | Version: | 18 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:7415 | |||
Oval ID: | oval:org.mitre.oval:def:7415 | ||
Title: | Adobe Flash Player Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166, CVE-2010-2171, CVE-2010-2175, CVE-2010-2177, CVE-2010-2178, CVE-2010-2180, CVE-2010-2182, CVE-2010-2184, CVE-2010-2187, and CVE-2010-2188. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2176 | Version: | 18 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:7431 | |||
Oval ID: | oval:org.mitre.oval:def:7431 | ||
Title: | Adobe Flash Player Memory Corruption Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2171, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2180, CVE-2010-2182, CVE-2010-2184, CVE-2010-2187, and CVE-2010-2188. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2166 | Version: | 18 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:7491 | |||
Oval ID: | oval:org.mitre.oval:def:7491 | ||
Title: | Adobe Flash Player Multiple Heap Overflow Vulnerabilities | ||
Description: | Multiple heap-based buffer overflows in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors related to malformed (1) GIF or (2) JPEG data. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2167 | Version: | 18 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:7501 | |||
Oval ID: | oval:org.mitre.oval:def:7501 | ||
Title: | Adobe Flash Player Multiple Vulnerabilities that could lead to code execution | ||
Description: | Multiple unspecified vulnerabilities in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unknown vectors. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2163 | Version: | 18 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:7508 | |||
Oval ID: | oval:org.mitre.oval:def:7508 | ||
Title: | Adobe Flash Player Memory Exhaustion Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via an invalid offset in an unspecified undocumented opcode in ActionScript Virtual Machine 2, related to getouterscope, a different vulnerability than CVE-2010-2165, CVE-2010-2166, CVE-2010-2171, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2180, CVE-2010-2182, CVE-2010-2184, CVE-2010-2187, and CVE-2010-2188. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2160 | Version: | 18 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:7528 | |||
Oval ID: | oval:org.mitre.oval:def:7528 | ||
Title: | Adobe Flash Player Invalid Pointer Vulnerability | ||
Description: | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors, related to an "invalid pointer vulnerability" and the newfunction (0x44) operator, a different vulnerability than CVE-2010-2173. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2174 | Version: | 18 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:7577 | |||
Oval ID: | oval:org.mitre.oval:def:7577 | ||
Title: | Adobe Flash Player Buffer Overflow Vulnerability | ||
Description: | Buffer overflow in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2185 | Version: | 18 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:8393 | |||
Oval ID: | oval:org.mitre.oval:def:8393 | ||
Title: | Adobe Flash Player and AIR Denial of Service Vulnerability | ||
Description: | Adobe Flash Player before 10.0.45.2 and Adobe AIR before 1.5.3.9130 allow remote attackers to cause a denial of service (application crash) via a modified SWF file. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-0187 | Version: | 13 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:8518 | |||
Oval ID: | oval:org.mitre.oval:def:8518 | ||
Title: | Adobe Flash Player, Acrobat, Adobe Reader and AIR Cross Domain Request Vulnerability | ||
Description: | Cross-domain vulnerability in Adobe Flash Player before 10.0.45.2, Adobe AIR before 1.5.3.9130, and Adobe Reader and Acrobat 8.x before 8.2.1 and 9.x before 9.3.1 allows remote attackers to bypass intended sandbox restrictions and make cross-domain requests via unspecified vectors. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-0186 | Version: | 27 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2 | Product(s): | Adobe Flash Player Adobe AIR Adobe Reader Adobe Acrobat |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
SAINT Exploits
Description | Link |
---|---|
Adobe Flash Player Flash Content Parsing Code Execution | More info here |
Adobe Reader authplay.dll newfunction Memory Corruption | More info here |
ExploitDB Exploits
id | Description |
---|---|
2011-04-19 | Adobe Flash Player < 10.1.53 .64 Action Script Type Confusion Exploit (DEP... |
2010-09-25 | Adobe Flash Player "newfunction" Invalid Pointer Use |
2010-11-01 | Adobe Flash Player "Button" Remote Code Execution |
2010-09-20 | Adobe Flash Player "newfunction" Invalid Pointer Use |
2010-11-05 | Adobe Flash ActionIf Integer Denial of Service Vulnerability |
2010-09-01 | MOAUB #1 - Adobe Acrobat Reader and Flash Player |
2010-06-09 | Adobe Flash and Reader - 0day Exploit PoC (from the wild) |
OpenVAS Exploits
Date | Description |
---|---|
2011-09-07 | Name : Mac OS X v10.6.4 Multiple Vulnerabilities (2010-007) File : nvt/gb_macosx_su10-007.nasl |
2011-03-09 | Name : Gentoo Security Advisory GLSA 201009-05 (acroread) File : nvt/glsa_201009_05.nasl |
2011-03-09 | Name : Gentoo Security Advisory GLSA 201101-08 (acroread) File : nvt/glsa_201101_08.nasl |
2011-03-09 | Name : Gentoo Security Advisory GLSA 201101-09 (adobe-flash) File : nvt/glsa_201101_09.nasl |
2011-01-04 | Name : SuSE Update for acoread SUSE-SA:2010:058 File : nvt/gb_suse_2010_058.nasl |
2010-11-17 | Name : FreeBSD Ports: linux-flashplugin File : nvt/freebsd_linux-flashplugin11.nasl |
2010-11-16 | Name : SuSE Update for flash-player SUSE-SA:2010:055 File : nvt/gb_suse_2010_055.nasl |
2010-11-12 | Name : Adobe Flash Player Multiple Vulnerabilities (Linux) File : nvt/gb_adobe_flash_player_mult_vuln_nov10_lin.nasl |
2010-11-12 | Name : Adobe Flash Player Multiple Vulnerabilities (Windows) File : nvt/gb_adobe_flash_player_mult_vuln_nov10_win.nasl |
2010-11-10 | Name : Adobe Products Content Code Execution Vulnerability (Linux) File : nvt/gb_adobe_prdts_arbitrary_code_exec_vuln_nov10_lin.nasl |
2010-11-10 | Name : Adobe Products Content Code Execution Vulnerability (Windows) File : nvt/gb_adobe_prdts_arbitrary_code_exec_vuln_nov10_win.nasl |
2010-10-28 | Name : Adobe Flash Player Untrusted search path vulnerability (windows) File : nvt/gb_adobe_flash_player_untrusted_search_path_vuln_win.nasl |
2010-10-19 | Name : SuSE Update for acroread SUSE-SA:2010:048 File : nvt/gb_suse_2010_048.nasl |
2010-10-18 | Name : Adobe Acrobat and Reader Multiple Vulnerabilities -Oct10 (Windows) File : nvt/gb_adobe_prdts_mult_vuln_oct10_win.nasl |
2010-10-10 | Name : FreeBSD Ports: linux-flashplugin File : nvt/freebsd_linux-flashplugin10.nasl |
2010-10-01 | Name : SuSE Update for flash-player SUSE-SA:2010:042 File : nvt/gb_suse_2010_042.nasl |
2010-09-21 | Name : Adobe Products Content Code Execution Vulnerability (Windows) File : nvt/secpod_adobe_prdts_content_code_execution_vuln_win.nasl |
2010-09-21 | Name : Adobe Reader/Flash Player Content Code Execution Vulnerability (Linux) File : nvt/secpod_adobe_prdts_content_code_execution_vuln_lin.nasl |
2010-09-10 | Name : SuSE Update for acroread SUSE-SA:2010:037 File : nvt/gb_suse_2010_037.nasl |
2010-08-21 | Name : FreeBSD Ports: linux-flashplugin File : nvt/freebsd_linux-flashplugin9.nasl |
2010-08-16 | Name : Adobe Flash Player/Air Multiple Vulnerabilities - August10 (Win) File : nvt/gb_adobe_prdts_mult_dos_vuln_aug10_win.nasl |
2010-08-16 | Name : SuSE Update for flash-player SUSE-SA:2010:034 File : nvt/gb_suse_2010_034.nasl |
2010-08-16 | Name : Adobe Flash Player/Air Multiple Vulnerabilities - August10 (Linux) File : nvt/gb_adobe_prdts_mult_dos_vuln_aug10_lin.nasl |
2010-07-12 | Name : SuSE Update for acroread SUSE-SA:2010:029 File : nvt/gb_suse_2010_029.nasl |
2010-07-06 | Name : FreeBSD Ports: linux-flashplugin File : nvt/freebsd_linux-flashplugin8.nasl |
2010-06-23 | Name : SuSE Update for flash-player SUSE-SA:2010:024 File : nvt/gb_suse_2010_024.nasl |
2010-06-22 | Name : Adobe Flash Player/Air Multiple Vulnerabilities - June10 (Linux) File : nvt/secpod_adobe_prdts_mult_vuln_jun10_lin.nasl |
2010-06-22 | Name : Adobe Flash Player/Air Multiple Vulnerabilities - June10 (Win) File : nvt/secpod_adobe_prdts_mult_vuln_jun10_win.nasl |
2010-06-15 | Name : Adobe Products Remote Code Execution Vulnerability - jun10 (Win) File : nvt/gb_adobe_prdts_code_exec_vuln_win_jun10.nasl |
2010-06-15 | Name : Adobe Products Remote Code Execution Vulnerability - jun10 (Linux) File : nvt/gb_adobe_prdts_code_exec_vuln_lin_jun10.nasl |
2010-02-26 | Name : Adobe Acrobat and Reader PDF Handling Code Execution Vulnerability (Linux) File : nvt/secpod_adobe_prdts_code_exec_vuln_feb10_lin.nasl |
2010-02-26 | Name : Adobe Acrobat and Reader PDF Handling Code Execution Vulnerability (Windows) File : nvt/secpod_adobe_prdts_code_exec_vuln_feb10_win.nasl |
2010-02-19 | Name : Adobe Flash Player/Air Multiple Vulnerabilities -feb10 (Win) File : nvt/gb_adobe_prdts_mult_vuln_feb10_win.nasl |
2010-02-19 | Name : Adobe Flash Player/Air Multiple Vulnerabilities -feb10 (Linux) File : nvt/gb_adobe_prdts_mult_vuln_feb10_lin.nasl |
2010-02-18 | Name : FreeBSD Ports: linux-flashplugin File : nvt/freebsd_linux-flashplugin7.nasl |
2009-03-13 | Name : Ubuntu USN-731-1 (apache2) File : nvt/ubuntu_731_1.nasl |
2009-03-13 | Name : Ubuntu USN-732-1 (dash) File : nvt/ubuntu_732_1.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
69146 | Adobe Flash Unspecified Cross-Domain Policy Bypass (2010-3636) Adobe Flash contains a flaw that may allow an attacker to bypass cross-domain policy file restrictions. No further details have been provided. |
69133 | Adobe Flash Unspecified DoS (2010-3639) Adobe Flash contains a flaw that may allow an attacker to cause a denial of service. No further details have been provided. |
69132 | Adobe Flash Unspecified Memory Corruption (2010-3640) An unspecified memory corruption flaw exists in Adobe Flash. This may allow an attacker to execute arbitrary code. No further details have been provided. |
69131 | Adobe Flash Unspecified Memory Corruption (2010-3641) An unspecified memory corruption flaw exists in Adobe Flash. This may allow an attacker to execute arbitrary code. No further details have been provided. |
69130 | Adobe Flash Unspecified Memory Corruption (2010-3642) An unspecified memory corruption flaw exists in Adobe Flash. This may allow an attacker to execute arbitrary code. No further details have been provided. |
69129 | Adobe Flash Unspecified Memory Corruption (2010-3643) An unspecified memory corruption flaw exists in Adobe Flash. This may allow an attacker to execute arbitrary code. No further details have been provided. |
69128 | Adobe Flash Unspecified Memory Corruption (2010-3644) An unspecified memory corruption flaw exists in Adobe Flash. This may allow an attacker to execute arbitrary code. No further details have been provided. |
69127 | Adobe Flash Unspecified Memory Corruption (2010-3645) An unspecified memory corruption flaw exists in Adobe Flash. This may allow an attacker to execute arbitrary code. No further details have been provided. |
69126 | Adobe Flash Unspecified Memory Corruption (2010-3646) An unspecified memory corruption flaw exists in Adobe Flash. This may allow an attacker to execute arbitrary code. No further details have been provided. |
69125 | Adobe Flash Unspecified Memory Corruption (2010-3647) An unspecified memory corruption flaw exists in Adobe Flash. This may allow an attacker to execute arbitrary code. No further details have been provided. |
69124 | Adobe Flash Unspecified Memory Corruption (2010-3648) An unspecified memory corruption flaw exists in Adobe Flash. This may allow an attacker to execute arbitrary code. No further details have been provided. |
69123 | Adobe Flash Unspecified Memory Corruption (2010-3649) An unspecified memory corruption flaw exists in Adobe Flash. This may allow an attacker to execute arbitrary code. No further details have been provided. |
69122 | Adobe Flash Unspecified Memory Corruption (2010-3650) An unspecified memory corruption flaw exists in Adobe Flash. This may allow an attacker to execute arbitrary code. No further details have been provided. |
69121 | Adobe Flash Unspecified Memory Corruption (2010-3652) An unspecified memory corruption flaw exists in Adobe Flash. This may allow an attacker to execute arbitrary code. No further details have been provided. |
68932 | Adobe Multiple Products Crafted SWF Movie Handling Overflow (2010-3654) Adobe Acrobat, Flash and Reader contains a flaw that may allow a remote attacker to execute arbitrary commands or code. An unspecified error can be exploited to execute arbitrary code |
68736 | Adobe Flash Player (IE Version) Path Subversion Arbitrary DLL Injection Code ... |
68024 | Adobe Flash Player Unspecified Code Execution Adobe Flash Player contains a flaw that may allow an attacker to run arbitrary code. The issue is triggered when a specially crafted .SWF file is viewed using a standalone player or within a Flash browser plugin. |
67062 | Adobe Flash Player Unspecified Memory Corruption (2010-2213) |
67061 | Adobe Flash Player Unspecified Memory Corruption (2010-2214) |
67060 | Adobe Flash Player Unspecified Clickjacking (2010-2215) |
67059 | Adobe Flash Player Multiple Unspecified Memory Corruption (2010-2216) |
67058 | Adobe Flash Player ActionScript connect Method Memory Corruption |
67057 | Adobe Flash Player ActionScript AVM1 ActionPush Command Arbitrary Code Execution |
66119 | Adobe Flash Player ActionScript Virtual Machine newFrameState Method Remote O... |
65600 | Adobe Flash Player / AIR on VMWare Tools Unspecified Memory Corruption DoS (2... |
65599 | Adobe Flash Player / AIR LocalConnection Connect Method Memory Corruption |
65598 | Adobe Flash Player / AIR Unspecified Memory Corruption DoS (2010-2187) |
65597 | Adobe Flash Player / AIR Unspecified Application Crash DoS (2010-2186) |
65596 | Adobe Flash Player / AIR Unspecified Overflow (2010-2185) |
65595 | Adobe Flash Player / AIR Unspecified Memory Corruption DoS (2010-2184) |
65594 | Adobe Flash Player / AIR Unspecified Overflow (2010-2183) |
65593 | Adobe Flash Player / AIR Unspecified Memory Corruption DoS (2010-2182) |
65592 | Adobe Flash Player / AIR Unspecified Overflow (2010-2181) |
65591 | Adobe Flash Player / AIR Unspecified Memory Corruption DoS (2010-2180) |
65590 | Adobe Flash Player / AIR Unspecified URL Parsing XSS (2010-2179) |
65589 | Adobe Flash Player / AIR Unspecified Memory Corruption DoS (2010-2178) |
65588 | Adobe Flash Player / AIR Unspecified Memory Corruption DoS (2010-2177) |
65587 | Adobe Flash Player / AIR Unspecified Memory Corruption DoS (2010-2176) |
65586 | Adobe Flash Player / AIR Unspecified Memory Corruption DoS (2010-2175) |
65585 | Adobe Flash Player / AIR newfunction Operator Processing Invalid Pointer Arbi... |
65584 | Adobe Flash Player / AIR newclass Operator Processing Invalid Pointer Arbitra... |
65583 | Adobe Flash Player on UNIX Unspecified DoS (2010-2172) |
65582 | Adobe Flash Player / AIR Multiple Tag JPEG Parsing Memory Corruption |
65581 | Adobe Flash Player / AIR Unspecified Overflow (2010-2170) |
65580 | Adobe Flash Player / AIR Unspecified Memory Corruption DoS (2010-2169) |
65579 | Adobe Flash Player / AIR GIF/JPEG Processing Multiple Unspecified Overflows |
65578 | Adobe Flash Player / AIR Unspecified Memory Corruption DoS (2010-2166) |
65577 | Adobe Flash Player / AIR Unspecified Memory Corruption DoS (2010-2165) |
65576 | Adobe Flash Player / AIR Unspecified Function Image Type Use-after-free Arbit... |
65575 | Adobe Flash Player / AIR Multiple Unspecified Arbitrary Code Execution (2010-... |
65574 | Adobe Flash Player / AIR Atom MP4 Parsing Memory Corruption |
65573 | Adobe Flash Player / AIR Unspecified Code Type Array Index Arbitrary Code Exe... |
65572 | Adobe Flash Player / AIR ActionScript Virtual Machine 2 getouterscope Opcode ... |
65532 | Adobe Flash Player / AIR Unspecified Memory Consumption DoS (2009-3793) |
65141 | Adobe Multiple Products SWF Handling Arbitrary Code Execution |
62370 | Adobe Flash Player / AIR Crafted SWF File DoS |
62300 | Adobe Flash Player Cross-domain Sandbox Restriction Bypass An unspecified vulnerability makes it possible to bypass the cross-domain restrictions. This would allow an attacker to perform cross-domain requests in violation of the same-origin policy and might allow to obtain or modify information from a different domain. |
50073 | Adobe Flash Player Differential SWF File Version Response DoS |
Snort® IPS/IDS
Date | Description |
---|---|
2015-03-31 | Adobe Flash Player decompressing denial of service attempt RuleID : 33635 - Revision : 2 - Type : FILE-FLASH |
2015-03-31 | Adobe Flash Player decompressing denial of service attempt RuleID : 33634 - Revision : 2 - Type : FILE-FLASH |
2014-01-10 | Adobe Flash Player newfunction memory corruption attempt RuleID : 28676 - Revision : 5 - Type : FILE-FLASH |
2014-01-10 | Adobe Flash Player newfunction memory corruption attempt RuleID : 28675 - Revision : 5 - Type : FILE-FLASH |
2014-01-10 | Adobe Flash Player newfunction memory corruption attempt RuleID : 28674 - Revision : 5 - Type : FILE-FLASH |
2014-01-10 | Adobe Flash Player newfunction memory corruption attempt RuleID : 28673 - Revision : 5 - Type : FILE-FLASH |
2014-01-10 | Teletubbies exploit kit payload download RuleID : 27887 - Revision : 2 - Type : EXPLOIT-KIT |
2014-01-10 | Teletubbies exploit kit payload download RuleID : 27886 - Revision : 2 - Type : EXPLOIT-KIT |
2014-01-10 | Teletubbies exploit kit exploit attempt for Adobe Flash Player RuleID : 27882 - Revision : 2 - Type : EXPLOIT-KIT |
2014-01-10 | Teletubbies exploit kit exploit attempt for Adobe Flash Player RuleID : 27881 - Revision : 2 - Type : EXPLOIT-KIT |
2014-01-10 | Adobe Flash Player newfunction memory corruption exploit attempt RuleID : 23592 - Revision : 7 - Type : FILE-FLASH |
2014-01-10 | Adobe Flash Player newfunction memory corruption attempt RuleID : 23591 - Revision : 7 - Type : FILE-FLASH |
2014-01-10 | Adobe Flash use-after-free attack attempt RuleID : 23579 - Revision : 6 - Type : FILE-FLASH |
2014-01-10 | Adobe flash player newfunction memory corruption attempt RuleID : 23512 - Revision : 5 - Type : FILE-PDF |
2014-01-10 | Adobe Acrobat Reader authplay.dll vulnerability exploit attempt RuleID : 23511 - Revision : 7 - Type : FILE-PDF |
2014-01-10 | Adobe Acrobat Reader File containing Flash use-after-free attack attempt RuleID : 23510 - Revision : 7 - Type : FILE-PDF |
2014-01-10 | Adobe Acrobat Reader malformed Richmedia annotation exploit attempt RuleID : 23509 - Revision : 5 - Type : FILE-PDF |
2014-01-10 | Adobe Flash Player newfunction memory corruption attempt RuleID : 23265 - Revision : 11 - Type : FILE-FLASH |
2014-01-10 | Adobe Flash Player newfunction memory corruption attempt RuleID : 23264 - Revision : 10 - Type : FILE-FLASH |
2014-01-10 | Adobe flash player newfunction memory corruption attempt RuleID : 23263 - Revision : 9 - Type : FILE-PDF |
2014-01-10 | Phoenix exploit kit post-compromise behavior RuleID : 21860 - Revision : 5 - Type : MALWARE-CNC |
2014-01-10 | Phoenix exploit kit landing page RuleID : 21640 - Revision : 6 - Type : EXPLOIT-KIT |
2014-01-10 | ShockwaveFlash.ShockwaveFlash ActiveX clsid access RuleID : 20875 - Revision : 7 - Type : BROWSER-PLUGINS |
2014-01-10 | Adobe Flash Player memory consumption vulnerability RuleID : 20050 - Revision : 12 - Type : FILE-FLASH |
2014-01-10 | Multiple products dwmapi.dll dll-load exploit attempt RuleID : 19620 - Revision : 13 - Type : FILE-OTHER |
2014-01-10 | Multiple products request for dwmapi.dll over SMB attempt RuleID : 19618 - Revision : 13 - Type : FILE-OTHER |
2014-01-10 | Adobe Flash Player newfunction memory corruption exploit attempt RuleID : 19408 - Revision : 12 - Type : FILE-FLASH |
2014-01-10 | Microsoft Office TIFF filter remote code execution attempt RuleID : 19316 - Revision : 8 - Type : FILE-OFFICE |
2014-01-10 | attempted download of a PDF with embedded Flash over pop3 RuleID : 19280 - Revision : 4 - Type : FILE-PDF |
2014-01-10 | attempted download of a PDF with embedded Flash over pop3 RuleID : 19279 - Revision : 4 - Type : FILE-PDF |
2014-01-10 | attempted download of a PDF with embedded Flash over pop3 RuleID : 19278 - Revision : 4 - Type : FILE-PDF |
2014-01-10 | attempted download of a PDF with embedded Flash over pop3 RuleID : 19277 - Revision : 4 - Type : FILE-PDF |
2014-01-10 | attempted download of a PDF with embedded Flash over pop3 RuleID : 19276 - Revision : 4 - Type : FILE-PDF |
2014-01-10 | attempted download of a PDF with embedded Flash over pop3 RuleID : 19275 - Revision : 4 - Type : FILE-PDF |
2014-01-10 | attempted download of a PDF with embedded Flash over smtp RuleID : 19274 - Revision : 4 - Type : FILE-PDF |
2014-01-10 | attempted download of a PDF with embedded Flash over smtp RuleID : 19273 - Revision : 4 - Type : FILE-PDF |
2014-01-10 | attempted download of a PDF with embedded Flash over smtp RuleID : 19272 - Revision : 4 - Type : FILE-PDF |
2014-01-10 | attempted download of a PDF with embedded Flash over smtp RuleID : 19271 - Revision : 4 - Type : FILE-PDF |
2014-01-10 | attempted download of a PDF with embedded Flash over smtp RuleID : 19270 - Revision : 4 - Type : FILE-PDF |
2014-01-10 | attempted download of a PDF with embedded Flash RuleID : 19269 - Revision : 14 - Type : FILE-PDF |
2014-01-10 | attempted download of a PDF with embedded Flash RuleID : 19268 - Revision : 14 - Type : FILE-PDF |
2014-01-10 | Adobe Flash Player SWF file MP4 data parsing memory corruption attempt RuleID : 19148 - Revision : 15 - Type : FILE-MULTIMEDIA |
2014-01-10 | Adobe Flash Player newfunction memory corruption attempt RuleID : 19145 - Revision : 13 - Type : FILE-FLASH |
2014-01-10 | Adobe Flash Player content parsing execution attempt RuleID : 18992 - Revision : 11 - Type : FILE-FLASH |
2014-01-10 | Adobe Flash Player undefined tag exploit attempt RuleID : 18805 - Revision : 10 - Type : FILE-FLASH |
2014-01-10 | Adobe multiple products dwmapi.dll dll-load exploit attempt RuleID : 18330 - Revision : 4 - Type : NETBIOS |
2014-01-10 | Adobe multiple products dwmapi.dll dll-load exploit attempt RuleID : 18328 - Revision : 4 - Type : WEB-CLIENT |
2014-01-10 | Adobe Flash Player ActionScript remote code execution attempt RuleID : 18180 - Revision : 6 - Type : FILE-FLASH |
2014-01-10 | Adobe Flash authplay.dll memory corruption attempt RuleID : 17808 - Revision : 8 - Type : FILE-FLASH |
2014-01-10 | Adobe Flash Player and Reader remote code execution attempt RuleID : 17257 - Revision : 12 - Type : FILE-FLASH |
2014-01-10 | Adobe Flash Player SWF ActionScript exploit attempt RuleID : 17142 - Revision : 12 - Type : FILE-FLASH |
2014-01-10 | Adobe Flash invalid data precision arbitrary code execution exploit attempt RuleID : 17141 - Revision : 11 - Type : FILE-FLASH |
2014-01-10 | Adobe Acrobat Reader authplay.dll vulnerability exploit attempt RuleID : 16664 - Revision : 12 - Type : FILE-PDF |
2014-01-10 | Adobe Flash use-after-free attack attempt RuleID : 16634 - Revision : 16 - Type : FILE-FLASH |
2014-01-10 | Adobe Acrobat Reader File containing Flash use-after-free attack attempt RuleID : 16633 - Revision : 19 - Type : FILE-PDF |
2014-01-10 | Adobe Acrobat Reader malformed Richmedia annotation exploit attempt RuleID : 16545 - Revision : 21 - Type : FILE-PDF |
2014-01-10 | attempted download of a PDF with embedded Flash RuleID : 15727 - Revision : 27 - Type : FILE-PDF |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_3_acroread-100826.nasl - Type : ACT_GATHER_INFO |
2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_3_acroread-101007.nasl - Type : ACT_GATHER_INFO |
2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_3_acroread-101206.nasl - Type : ACT_GATHER_INFO |
2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_3_flash-player-100811.nasl - Type : ACT_GATHER_INFO |
2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_3_flash-player-100921.nasl - Type : ACT_GATHER_INFO |
2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_3_flash-player-101104.nasl - Type : ACT_GATHER_INFO |
2013-01-24 | Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2010-0102.nasl - Type : ACT_GATHER_INFO |
2013-01-24 | Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2010-0103.nasl - Type : ACT_GATHER_INFO |
2013-01-24 | Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2010-0464.nasl - Type : ACT_GATHER_INFO |
2013-01-24 | Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2010-0470.nasl - Type : ACT_GATHER_INFO |
2013-01-24 | Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2010-0623.nasl - Type : ACT_GATHER_INFO |
2013-01-24 | Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2010-0624.nasl - Type : ACT_GATHER_INFO |
2013-01-24 | Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2010-0829.nasl - Type : ACT_GATHER_INFO |
2013-01-24 | Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2010-0834.nasl - Type : ACT_GATHER_INFO |
2011-05-05 | Name : The remote openSUSE host is missing a security update. File : suse_11_1_acroread-101206.nasl - Type : ACT_GATHER_INFO |
2011-05-05 | Name : The remote openSUSE host is missing a security update. File : suse_11_1_flash-player-101104.nasl - Type : ACT_GATHER_INFO |
2011-05-05 | Name : The remote openSUSE host is missing a security update. File : suse_11_2_acroread-101206.nasl - Type : ACT_GATHER_INFO |
2011-05-05 | Name : The remote openSUSE host is missing a security update. File : suse_11_2_flash-player-101104.nasl - Type : ACT_GATHER_INFO |
2011-01-27 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_acroread-6879.nasl - Type : ACT_GATHER_INFO |
2011-01-27 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_acroread-6881.nasl - Type : ACT_GATHER_INFO |
2011-01-27 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_acroread-7087.nasl - Type : ACT_GATHER_INFO |
2011-01-27 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_acroread-7131.nasl - Type : ACT_GATHER_INFO |
2011-01-27 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_acroread-7181.nasl - Type : ACT_GATHER_INFO |
2011-01-27 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_acroread-7266.nasl - Type : ACT_GATHER_INFO |
2011-01-27 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_acroread_ja-7086.nasl - Type : ACT_GATHER_INFO |
2011-01-27 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_acroread_ja-7132.nasl - Type : ACT_GATHER_INFO |
2011-01-27 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_acroread_ja-7182.nasl - Type : ACT_GATHER_INFO |
2011-01-27 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_acroread_ja-7267.nasl - Type : ACT_GATHER_INFO |
2011-01-27 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_flash-player-6844.nasl - Type : ACT_GATHER_INFO |
2011-01-27 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_flash-player-6845.nasl - Type : ACT_GATHER_INFO |
2011-01-27 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_flash-player-7071.nasl - Type : ACT_GATHER_INFO |
2011-01-27 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_flash-player-7165.nasl - Type : ACT_GATHER_INFO |
2011-01-27 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_flash-player-7223.nasl - Type : ACT_GATHER_INFO |
2011-01-24 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201101-08.nasl - Type : ACT_GATHER_INFO |
2011-01-24 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201101-09.nasl - Type : ACT_GATHER_INFO |
2010-12-09 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_acroread-101203.nasl - Type : ACT_GATHER_INFO |
2010-12-09 | Name : The remote SuSE 11 host is missing a security update. File : suse_11_acroread_ja-101203.nasl - Type : ACT_GATHER_INFO |
2010-12-02 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2010-0934.nasl - Type : ACT_GATHER_INFO |
2010-12-02 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_acroread-100702.nasl - Type : ACT_GATHER_INFO |
2010-12-02 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_acroread-100825.nasl - Type : ACT_GATHER_INFO |
2010-12-02 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_acroread-101007.nasl - Type : ACT_GATHER_INFO |
2010-12-02 | Name : The remote SuSE 11 host is missing a security update. File : suse_11_acroread_ja-100702.nasl - Type : ACT_GATHER_INFO |
2010-12-02 | Name : The remote SuSE 11 host is missing a security update. File : suse_11_acroread_ja-100825.nasl - Type : ACT_GATHER_INFO |
2010-12-02 | Name : The remote SuSE 11 host is missing a security update. File : suse_11_acroread_ja-101007.nasl - Type : ACT_GATHER_INFO |
2010-12-02 | Name : The remote SuSE 11 host is missing a security update. File : suse_11_flash-player-100611.nasl - Type : ACT_GATHER_INFO |
2010-12-02 | Name : The remote SuSE 11 host is missing a security update. File : suse_11_flash-player-100811.nasl - Type : ACT_GATHER_INFO |
2010-12-02 | Name : The remote SuSE 11 host is missing a security update. File : suse_11_flash-player-100921.nasl - Type : ACT_GATHER_INFO |
2010-12-02 | Name : The remote SuSE 11 host is missing a security update. File : suse_11_flash-player-101104.nasl - Type : ACT_GATHER_INFO |
2010-11-18 | Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2010-0867.nasl - Type : ACT_GATHER_INFO |
2010-11-16 | Name : The version of Adobe Acrobat on the remote Windows host is affected by multip... File : adobe_acrobat_apsb10-28.nasl - Type : ACT_GATHER_INFO |
2010-11-16 | Name : The version of Adobe Reader on the remote Windows host is affected by multipl... File : adobe_reader_apsb10-28.nasl - Type : ACT_GATHER_INFO |
2010-11-15 | Name : The remote Windows host contains a version of Adobe AIR that is affected by m... File : adobe_air_apsb10-26.nasl - Type : ACT_GATHER_INFO |
2010-11-10 | Name : The remote host is missing a Mac OS X update that fixes various security issues. File : macosx_10_6_5.nasl - Type : ACT_GATHER_INFO |
2010-11-10 | Name : The remote host is missing a Mac OS X update that fixes security issues. File : macosx_SecUpd2010-007.nasl - Type : ACT_GATHER_INFO |
2010-11-08 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_76b597e4e9c611df9e10001b2134ef46.nasl - Type : ACT_GATHER_INFO |
2010-11-05 | Name : The remote Windows host contains a browser plug-in that is affected by multip... File : flash_player_apsb10-26.nasl - Type : ACT_GATHER_INFO |
2010-10-11 | Name : The remote openSUSE host is missing a security update. File : suse_11_1_acroread-101007.nasl - Type : ACT_GATHER_INFO |
2010-10-11 | Name : The remote openSUSE host is missing a security update. File : suse_11_2_acroread-101007.nasl - Type : ACT_GATHER_INFO |
2010-10-07 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2010-0743.nasl - Type : ACT_GATHER_INFO |
2010-09-23 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_8a34d9e6c66211dfb2e1001b2134ef46.nasl - Type : ACT_GATHER_INFO |
2010-09-22 | Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2010-0706.nasl - Type : ACT_GATHER_INFO |
2010-09-22 | Name : The remote openSUSE host is missing a security update. File : suse_11_1_flash-player-100921.nasl - Type : ACT_GATHER_INFO |
2010-09-22 | Name : The remote openSUSE host is missing a security update. File : suse_11_2_flash-player-100921.nasl - Type : ACT_GATHER_INFO |
2010-09-21 | Name : The remote Windows host contains a browser plug-in that is affected by a code... File : flash_player_apsb10-22.nasl - Type : ACT_GATHER_INFO |
2010-09-09 | Name : The version of Adobe Acrobat on the remote Windows host is affected by multip... File : adobe_acrobat_apsa10-02.nasl - Type : ACT_GATHER_INFO |
2010-09-09 | Name : The version of Adobe Reader on the remote Windows host is affected by multipl... File : adobe_reader_apsa10-02.nasl - Type : ACT_GATHER_INFO |
2010-09-08 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201009-05.nasl - Type : ACT_GATHER_INFO |
2010-09-02 | Name : The remote openSUSE host is missing a security update. File : suse_11_1_acroread-100826.nasl - Type : ACT_GATHER_INFO |
2010-09-02 | Name : The remote openSUSE host is missing a security update. File : suse_11_2_acroread-100826.nasl - Type : ACT_GATHER_INFO |
2010-08-23 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2010-0636.nasl - Type : ACT_GATHER_INFO |
2010-08-19 | Name : The version of Adobe Acrobat on the remote Windows host is affected by multip... File : adobe_acrobat_apsb10-17.nasl - Type : ACT_GATHER_INFO |
2010-08-19 | Name : The version of Adobe Reader on the remote Windows host is affected by multipl... File : adobe_reader_apsb10-17.nasl - Type : ACT_GATHER_INFO |
2010-08-14 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_e19e74a4a71211dfb234001b2134ef46.nasl - Type : ACT_GATHER_INFO |
2010-08-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_1_flash-player-100811.nasl - Type : ACT_GATHER_INFO |
2010-08-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_2_flash-player-100811.nasl - Type : ACT_GATHER_INFO |
2010-08-11 | Name : The remote Windows host contains a version of Adobe AIR that is affected by m... File : adobe_air_apsb10-16.nasl - Type : ACT_GATHER_INFO |
2010-08-11 | Name : The remote Windows host contains a browser plug-in that is affected by multip... File : flash_player_apsb10-16.nasl - Type : ACT_GATHER_INFO |
2010-07-28 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2010-0503.nasl - Type : ACT_GATHER_INFO |
2010-07-09 | Name : The remote openSUSE host is missing a security update. File : suse_11_0_acroread-100708.nasl - Type : ACT_GATHER_INFO |
2010-07-09 | Name : The remote openSUSE host is missing a security update. File : suse_11_1_acroread-100708.nasl - Type : ACT_GATHER_INFO |
2010-07-09 | Name : The remote openSUSE host is missing a security update. File : suse_11_2_acroread-100706.nasl - Type : ACT_GATHER_INFO |
2010-06-30 | Name : The version of Adobe Acrobat on the remote Windows host is affected by multip... File : adobe_acrobat_apsb10-15.nasl - Type : ACT_GATHER_INFO |
2010-06-30 | Name : The version of Adobe Reader on the remote Windows host is affected by multipl... File : adobe_reader_apsb10-15.nasl - Type : ACT_GATHER_INFO |
2010-06-16 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_144e524a77eb11dfae06001b2134ef46.nasl - Type : ACT_GATHER_INFO |
2010-06-15 | Name : The remote host is missing a Mac OS X update that fixes various security issues. File : macosx_10_6_4.nasl - Type : ACT_GATHER_INFO |
2010-06-15 | Name : The remote host is missing a Mac OS X update that fixes a security issue. File : macosx_SecUpd2010-004.nasl - Type : ACT_GATHER_INFO |
2010-06-14 | Name : The remote openSUSE host is missing a security update. File : suse_11_0_flash-player-100611.nasl - Type : ACT_GATHER_INFO |
2010-06-14 | Name : The remote openSUSE host is missing a security update. File : suse_11_1_flash-player-100611.nasl - Type : ACT_GATHER_INFO |
2010-06-14 | Name : The remote openSUSE host is missing a security update. File : suse_11_2_flash-player-100611.nasl - Type : ACT_GATHER_INFO |
2010-06-10 | Name : The remote Windows host contains a version of Adobe AIR that is affected by m... File : adobe_air_apsb10-14.nasl - Type : ACT_GATHER_INFO |
2010-06-10 | Name : The remote Windows host contains a browser plug-in that is affected by a code... File : flash_player_apsb10-14.nasl - Type : ACT_GATHER_INFO |
2010-03-04 | Name : The remote openSUSE host is missing a security update. File : suse_11_0_acroread-100225.nasl - Type : ACT_GATHER_INFO |
2010-03-04 | Name : The remote openSUSE host is missing a security update. File : suse_11_1_acroread-100225.nasl - Type : ACT_GATHER_INFO |
2010-03-04 | Name : The remote openSUSE host is missing a security update. File : suse_11_2_acroread-100225.nasl - Type : ACT_GATHER_INFO |
2010-03-04 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_acroread-100225.nasl - Type : ACT_GATHER_INFO |
2010-02-19 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2010-0114.nasl - Type : ACT_GATHER_INFO |
2010-02-17 | Name : The version of Adobe Acrobat on the remote Windows host is affected by multip... File : adobe_acrobat_apsb10-07.nasl - Type : ACT_GATHER_INFO |
2010-02-17 | Name : The version of Adobe Reader on the remote Windows host is affected by multipl... File : adobe_reader_apsb10-07.nasl - Type : ACT_GATHER_INFO |
2010-02-17 | Name : The remote openSUSE host is missing a security update. File : suse_11_0_flash-player-100214.nasl - Type : ACT_GATHER_INFO |
2010-02-17 | Name : The remote openSUSE host is missing a security update. File : suse_11_1_flash-player-100214.nasl - Type : ACT_GATHER_INFO |
2010-02-17 | Name : The remote openSUSE host is missing a security update. File : suse_11_2_flash-player-100214.nasl - Type : ACT_GATHER_INFO |
2010-02-17 | Name : The remote SuSE 11 host is missing a security update. File : suse_11_flash-player-100214.nasl - Type : ACT_GATHER_INFO |
2010-02-15 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_ff6519ad18e511df9bdd001b2134ef46.nasl - Type : ACT_GATHER_INFO |
2010-02-12 | Name : The remote Windows host contains a version of Adobe AIR that is affected by m... File : adobe_air_apsb10-06.nasl - Type : ACT_GATHER_INFO |
2010-02-12 | Name : The remote Windows host contains a browser plug-in that is affected by multip... File : flash_player_apsb10_06.nasl - Type : ACT_GATHER_INFO |
2009-07-21 | Name : The remote openSUSE host is missing a security update. File : suse_11_0_flash-player-081107.nasl - Type : ACT_GATHER_INFO |
2008-11-12 | Name : The remote openSUSE host is missing a security update. File : suse_flash-player-5747.nasl - Type : ACT_GATHER_INFO |
2008-11-12 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_flash-player-5757.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2014-02-17 11:36:59 |
|