9.3 - HPSBMA02663 SSRT100428

Executive Summary

This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.

Summary
Title	HP Systems Insight Manager (SIM) for HP-UX, Linux, and Windows, Remote Cross Site Scripting (XSS), Cross Site Request Forgery (CSRF), Execution of Arbitrary Code, Denial of Service (DoS)

Informations
Name	HPSBMA02663 SSRT100428	First vendor Publication	2011-04-19
Vendor	HP	Last vendor Modification	2011-04-19
Severity (Vendor)	N/A	Revision	1

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C)
Cvss Base Score	9.3	Attack Range	Network
Cvss Impact Score	10	Attack Complexity	Medium
Cvss Expoit Score	8.6	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Potential security vulnerabilities have been identified in HP Systems Insight Manager (SIM) for HP-UX, Linux, and Windows. The vulnerabilities could be exploited remotely resulting in cross site scripting (XSS), cross site request forgery (CSRF), execution of arbitrary code, and Denial of Service (DoS).

Original Source

Url : http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02738731

CWE : Common Weakness Enumeration

%	Id	Name
25 %	CWE-352	Cross-Site Request Forgery (CSRF) (CWE/SANS Top 25)
25 %	CWE-264	Permissions, Privileges, and Access Controls
25 %	CWE-119	Failure to Constrain Operations within the Bounds of a Memory Buffer
25 %	CWE-79	Failure to Preserve Web Page Structure ('Cross-site Scripting') (CWE/SANS Top 25)

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:11310

Oval ID:	oval:org.mitre.oval:def:11310
Title:	Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to cause a denial of service or possibly execute arbitrary code via unknown vectors.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-3639	Version:	15
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2	Product(s):	Adobe Flash Player
Definition Synopsis:
Check if Adobe Flash Player is installed and version is less than 9.0.289.0 Adobe Flash Player is installed AND Check if Adobe Flash Player version less than 9.0.289.0 OR Check if Adobe Flash Player 10 is installed and version is less than 10.1.102.64 Check if Adobe Flash Player version less than 10.1.102.64 AND Adobe Flash Player 10 is installed OR Flash.ocx section ActiveX Control is installed AND Flash.ocx versions section Flash.ocx 10 section Determine if the version of Flash.ocx is less than 10.1.102.64 AND Determine if the version of Flash.ocx is greater than or equal 10.0 OR Flash.ocx 9 section Determine if the version of Flash.ocx is less than 9.0.289.0 AND Determine if the version of Flash.ocx is greater than or equal 9.0

Definition Id: oval:org.mitre.oval:def:11636

Oval ID:	oval:org.mitre.oval:def:11636
Title:	Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, and CVE-2010-3652.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-3650	Version:	15
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2	Product(s):	Adobe Flash Player
Definition Synopsis:
Check if Adobe Flash Player is installed and version is less than 9.0.289.0 Adobe Flash Player is installed AND Check if Adobe Flash Player version less than 9.0.289.0 OR Check if Adobe Flash Player 10 is installed and version is less than 10.1.102.64 Check if Adobe Flash Player version less than 10.1.102.64 AND Adobe Flash Player 10 is installed OR Flash.ocx section ActiveX Control is installed AND Flash.ocx versions section Flash.ocx 10 section Determine if the version of Flash.ocx is less than 10.1.102.64 AND Determine if the version of Flash.ocx is greater than or equal 10.0 OR Flash.ocx 9 section Determine if the version of Flash.ocx is less than 9.0.289.0 AND Determine if the version of Flash.ocx is greater than or equal 9.0

Definition Id: oval:org.mitre.oval:def:11660

Oval ID:	oval:org.mitre.oval:def:11660
Title:	Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-3644	Version:	15
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2	Product(s):	Adobe Flash Player
Definition Synopsis:
Check if Adobe Flash Player is installed and version is less than 9.0.289.0 Adobe Flash Player is installed AND Check if Adobe Flash Player version less than 9.0.289.0 OR Check if Adobe Flash Player 10 is installed and version is less than 10.1.102.64 Check if Adobe Flash Player version less than 10.1.102.64 AND Adobe Flash Player 10 is installed OR Flash.ocx section ActiveX Control is installed AND Flash.ocx versions section Flash.ocx 10 section Determine if the version of Flash.ocx is less than 10.1.102.64 AND Determine if the version of Flash.ocx is greater than or equal 10.0 OR Flash.ocx 9 section Determine if the version of Flash.ocx is less than 9.0.289.0 AND Determine if the version of Flash.ocx is greater than or equal 9.0

Definition Id: oval:org.mitre.oval:def:11842

Oval ID:	oval:org.mitre.oval:def:11842
Title:	Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-3648	Version:	16
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2	Product(s):	Adobe Flash Player
Definition Synopsis:
Check if Adobe Flash Player is installed and version is less than 9.0.289.0 Adobe Flash Player is installed AND Check if Adobe Flash Player version less than 9.0.289.0 OR Check if Adobe Flash Player 10 is installed and version is less than 10.1.102.64 Check if Adobe Flash Player version less than 10.1.102.64 AND Adobe Flash Player 10 is installed OR Flash.ocx section ActiveX Control is installed AND Flash.ocx versions section Flash.ocx 10 section Determine if the version of Flash.ocx is less than 10.1.102.64 AND Determine if the version of Flash.ocx is greater than or equal 10.0 OR Flash.ocx 9 section Determine if the version of Flash.ocx is less than 9.0.289.0 AND Determine if the version of Flash.ocx is greater than or equal 9.0

Definition Id: oval:org.mitre.oval:def:11872

Oval ID:	oval:org.mitre.oval:def:11872
Title:	Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3650, and CVE-2010-3652.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-3649	Version:	16
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2	Product(s):	Adobe Flash Player
Definition Synopsis:
Check if Adobe Flash Player is installed and version is less than 9.0.289.0 Adobe Flash Player is installed AND Check if Adobe Flash Player version less than 9.0.289.0 OR Check if Adobe Flash Player 10 is installed and version is less than 10.1.102.64 Check if Adobe Flash Player version less than 10.1.102.64 AND Adobe Flash Player 10 is installed OR Flash.ocx section ActiveX Control is installed AND Flash.ocx versions section Flash.ocx 10 section Determine if the version of Flash.ocx is less than 10.1.102.64 AND Determine if the version of Flash.ocx is greater than or equal 10.0 OR Flash.ocx 9 section Determine if the version of Flash.ocx is less than 9.0.289.0 AND Determine if the version of Flash.ocx is greater than or equal 9.0

Definition Id: oval:org.mitre.oval:def:11905

Oval ID:	oval:org.mitre.oval:def:11905
Title:	Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-3645	Version:	16
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2	Product(s):	Adobe Flash Player
Definition Synopsis:
Check if Adobe Flash Player is installed and version is less than 9.0.289.0 Adobe Flash Player is installed AND Check if Adobe Flash Player version less than 9.0.289.0 OR Check if Adobe Flash Player 10 is installed and version is less than 10.1.102.64 Check if Adobe Flash Player version less than 10.1.102.64 AND Adobe Flash Player 10 is installed OR Flash.ocx section ActiveX Control is installed AND Flash.ocx versions section Flash.ocx 10 section Determine if the version of Flash.ocx is less than 10.1.102.64 AND Determine if the version of Flash.ocx is greater than or equal 10.0 OR Flash.ocx 9 section Determine if the version of Flash.ocx is less than 9.0.289.0 AND Determine if the version of Flash.ocx is greater than or equal 9.0

Definition Id: oval:org.mitre.oval:def:11922

Oval ID:	oval:org.mitre.oval:def:11922
Title:	Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-3646	Version:	16
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2	Product(s):	Adobe Flash Player
Definition Synopsis:
Check if Adobe Flash Player is installed and version is less than 9.0.289.0 Adobe Flash Player is installed AND Check if Adobe Flash Player version less than 9.0.289.0 OR Check if Adobe Flash Player 10 is installed and version is less than 10.1.102.64 Check if Adobe Flash Player version less than 10.1.102.64 AND Adobe Flash Player 10 is installed OR Flash.ocx section ActiveX Control is installed AND Flash.ocx versions section Flash.ocx 10 section Determine if the version of Flash.ocx is less than 10.1.102.64 AND Determine if the version of Flash.ocx is greater than or equal 10.0 OR Flash.ocx 9 section Determine if the version of Flash.ocx is less than 9.0.289.0 AND Determine if the version of Flash.ocx is greater than or equal 9.0

Definition Id: oval:org.mitre.oval:def:11965

Oval ID:	oval:org.mitre.oval:def:11965
Title:	Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, and CVE-2010-3650.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-3652	Version:	16
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2	Product(s):	Adobe Flash Player
Definition Synopsis:
Check if Adobe Flash Player is installed and version is less than 9.0.289.0 Adobe Flash Player is installed AND Check if Adobe Flash Player version less than 9.0.289.0 OR Check if Adobe Flash Player 10 is installed and version is less than 10.1.102.64 Check if Adobe Flash Player version less than 10.1.102.64 AND Adobe Flash Player 10 is installed OR Flash.ocx section ActiveX Control is installed AND Flash.ocx versions section Flash.ocx 10 section Determine if the version of Flash.ocx is less than 10.1.102.64 AND Determine if the version of Flash.ocx is greater than or equal 10.0 OR Flash.ocx 9 section Determine if the version of Flash.ocx is less than 9.0.289.0 AND Determine if the version of Flash.ocx is greater than or equal 9.0

Definition Id: oval:org.mitre.oval:def:11979

Oval ID:	oval:org.mitre.oval:def:11979
Title:	Unspecified vulnerability in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Mac OS X, when Safari is used, allows attackers to obtain sensitive information via unknown vectors.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-3638	Version:	16
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2	Product(s):	Adobe Flash Player
Definition Synopsis:
Check if Adobe Flash Player is installed and version is less than 9.0.289.0 Adobe Flash Player is installed AND Check if Adobe Flash Player version less than 9.0.289.0 OR Check if Adobe Flash Player 10 is installed and version is less than 10.1.102.64 Check if Adobe Flash Player version less than 10.1.102.64 AND Adobe Flash Player 10 is installed OR Flash.ocx section ActiveX Control is installed AND Flash.ocx versions section Flash.ocx 10 section Determine if the version of Flash.ocx is less than 10.1.102.64 AND Determine if the version of Flash.ocx is greater than or equal 10.0 OR Flash.ocx 9 section Determine if the version of Flash.ocx is less than 9.0.289.0 AND Determine if the version of Flash.ocx is greater than or equal 9.0

Definition Id: oval:org.mitre.oval:def:12065

Oval ID:	oval:org.mitre.oval:def:12065
Title:	Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-3642	Version:	16
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2	Product(s):	Adobe Flash Player
Definition Synopsis:
Check if Adobe Flash Player is installed and version is less than 9.0.289.0 Adobe Flash Player is installed AND Check if Adobe Flash Player version less than 9.0.289.0 OR Check if Adobe Flash Player 10 is installed and version is less than 10.1.102.64 Check if Adobe Flash Player version less than 10.1.102.64 AND Adobe Flash Player 10 is installed OR Flash.ocx section ActiveX Control is installed AND Flash.ocx versions section Flash.ocx 10 section Determine if the version of Flash.ocx is less than 10.1.102.64 AND Determine if the version of Flash.ocx is greater than or equal 10.0 OR Flash.ocx 9 section Determine if the version of Flash.ocx is less than 9.0.289.0 AND Determine if the version of Flash.ocx is greater than or equal 9.0

Definition Id: oval:org.mitre.oval:def:12095

Oval ID:	oval:org.mitre.oval:def:12095
Title:	Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-3647	Version:	16
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2	Product(s):	Adobe Flash Player
Definition Synopsis:
Check if Adobe Flash Player is installed and version is less than 9.0.289.0 Adobe Flash Player is installed AND Check if Adobe Flash Player version less than 9.0.289.0 OR Check if Adobe Flash Player 10 is installed and version is less than 10.1.102.64 Check if Adobe Flash Player version less than 10.1.102.64 AND Adobe Flash Player 10 is installed OR Flash.ocx section ActiveX Control is installed AND Flash.ocx versions section Flash.ocx 10 section Determine if the version of Flash.ocx is less than 10.1.102.64 AND Determine if the version of Flash.ocx is greater than or equal 10.0 OR Flash.ocx 9 section Determine if the version of Flash.ocx is less than 9.0.289.0 AND Determine if the version of Flash.ocx is greater than or equal 9.0

Definition Id: oval:org.mitre.oval:def:12142

Oval ID:	oval:org.mitre.oval:def:12142
Title:	Vulnerability in parsing of a cross-domain policy file in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, does not properly handle unspecified encodings during the parsing of a cross-domain policy file, which allows remote web servers to bypass intended access restrictions via unknown vectors.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-3636	Version:	16
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2	Product(s):	Adobe Flash Player
Definition Synopsis:
Check if Adobe Flash Player is installed and version is less than 9.0.289.0 Adobe Flash Player is installed AND Check if Adobe Flash Player version less than 9.0.289.0 OR Check if Adobe Flash Player 10 is installed and version is less than 10.1.102.64 Check if Adobe Flash Player version less than 10.1.102.64 AND Adobe Flash Player 10 is installed OR Flash.ocx section ActiveX Control is installed AND Flash.ocx versions section Flash.ocx 10 section Determine if the version of Flash.ocx is less than 10.1.102.64 AND Determine if the version of Flash.ocx is greater than or equal 10.0 OR Flash.ocx 9 section Determine if the version of Flash.ocx is less than 9.0.289.0 AND Determine if the version of Flash.ocx is greater than or equal 9.0

Definition Id: oval:org.mitre.oval:def:12151

Oval ID:	oval:org.mitre.oval:def:12151
Title:	Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-3643	Version:	16
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2	Product(s):	Adobe Flash Player
Definition Synopsis:
Check if Adobe Flash Player is installed and version is less than 9.0.289.0 Adobe Flash Player is installed AND Check if Adobe Flash Player version less than 9.0.289.0 OR Check if Adobe Flash Player 10 is installed and version is less than 10.1.102.64 Check if Adobe Flash Player version less than 10.1.102.64 AND Adobe Flash Player 10 is installed OR Flash.ocx section ActiveX Control is installed AND Flash.ocx versions section Flash.ocx 10 section Determine if the version of Flash.ocx is less than 10.1.102.64 AND Determine if the version of Flash.ocx is greater than or equal 10.0 OR Flash.ocx 9 section Determine if the version of Flash.ocx is less than 9.0.289.0 AND Determine if the version of Flash.ocx is greater than or equal 9.0

Definition Id: oval:org.mitre.oval:def:12154

Oval ID:	oval:org.mitre.oval:def:12154
Title:	Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-3641	Version:	16
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2	Product(s):	Adobe Flash Player
Definition Synopsis:
Check if Adobe Flash Player is installed and version is less than 9.0.289.0 Adobe Flash Player is installed AND Check if Adobe Flash Player version less than 9.0.289.0 OR Check if Adobe Flash Player 10 is installed and version is less than 10.1.102.64 Check if Adobe Flash Player version less than 10.1.102.64 AND Adobe Flash Player 10 is installed OR Flash.ocx section ActiveX Control is installed AND Flash.ocx versions section Flash.ocx 10 section Determine if the version of Flash.ocx is less than 10.1.102.64 AND Determine if the version of Flash.ocx is greater than or equal 10.0 OR Flash.ocx 9 section Determine if the version of Flash.ocx is less than 9.0.289.0 AND Determine if the version of Flash.ocx is greater than or equal 9.0

Definition Id: oval:org.mitre.oval:def:12179

Oval ID:	oval:org.mitre.oval:def:12179
Title:	Unspecified vulnerability which cause a denial of service (memory corruption) in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-3640	Version:	16
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2	Product(s):	Adobe Flash Player
Definition Synopsis:
Check if Adobe Flash Player is installed and version is less than 9.0.289.0 Adobe Flash Player is installed AND Check if Adobe Flash Player version less than 9.0.289.0 OR Check if Adobe Flash Player 10 is installed and version is less than 10.1.102.64 Check if Adobe Flash Player version less than 10.1.102.64 AND Adobe Flash Player 10 is installed OR Flash.ocx section ActiveX Control is installed AND Flash.ocx versions section Flash.ocx 10 section Determine if the version of Flash.ocx is less than 10.1.102.64 AND Determine if the version of Flash.ocx is greater than or equal 10.0 OR Flash.ocx 9 section Determine if the version of Flash.ocx is less than 9.0.289.0 AND Determine if the version of Flash.ocx is greater than or equal 9.0

Definition Id: oval:org.mitre.oval:def:12259

Oval ID:	oval:org.mitre.oval:def:12259
Title:	Unspecified ActiveX control vulnerability in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	An unspecified ActiveX control in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 (Flash10h.ocx) on Windows allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted FLV video.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-3637	Version:	16
Platform(s):	Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows 7 Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2	Product(s):	Adobe Flash Player
Definition Synopsis:
Check if Adobe Flash Player is installed and version is less than 9.0.289.0 Adobe Flash Player is installed AND Check if Adobe Flash Player version less than 9.0.289.0 OR Check if Adobe Flash Player 10 is installed and version is less than 10.1.102.64 Check if Adobe Flash Player version less than 10.1.102.64 AND Adobe Flash Player 10 is installed OR Flash.ocx section ActiveX Control is installed AND Flash.ocx versions section Flash.ocx 10 section Determine if the version of Flash.ocx is less than 10.1.102.64 AND Determine if the version of Flash.ocx is greater than or equal 10.0 OR Flash.ocx 9 section Determine if the version of Flash.ocx is less than 9.0.289.0 AND Determine if the version of Flash.ocx is greater than or equal 9.0

Definition Id: oval:org.mitre.oval:def:12625

Oval ID:	oval:org.mitre.oval:def:12625
Title:	Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to cause a denial of service or possibly execute arbitrary code via unknown vectors.
Family:	macos	Class:	vulnerability
Reference(s):	CVE-2010-3639	Version:	5
Platform(s):	Apple Mac OS X	Product(s):	Adobe Flash Player
Definition Synopsis:
Adobe Flash Player is Installed AND Flash version is before 9.0.289.0 or 10.x before 10.1.102.64 Version of Adobe Flash Player is less than 9.0.289.0 OR Adobe Flash Player 10.x before 10.1.102.64 installed Adobe Flash Player 10 is Installed AND Version of Adobe Flash Player is less than 10.1.102.64

Definition Id: oval:org.mitre.oval:def:15284

Oval ID:	oval:org.mitre.oval:def:15284
Title:	Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, and CVE-2010-3650.
Family:	macos	Class:	vulnerability
Reference(s):	CVE-2010-3652	Version:	3
Platform(s):	Apple Mac OS X	Product(s):	Adobe Flash Player
Definition Synopsis:
Adobe Flash Player is Installed AND Flash version is before 9.0.289.0 or 10.x before 10.1.102.64 Version of Adobe Flash Player is less than 9.0.289.0 OR Adobe Flash Player 10.x before 10.1.102.64 installed Adobe Flash Player 10 is Installed AND Version of Adobe Flash Player is less than 10.1.102.64

Definition Id: oval:org.mitre.oval:def:15750

Oval ID:	oval:org.mitre.oval:def:15750
Title:	Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3650, and CVE-2010-3652.
Family:	macos	Class:	vulnerability
Reference(s):	CVE-2010-3649	Version:	3
Platform(s):	Apple Mac OS X	Product(s):	Adobe Flash Player
Definition Synopsis:
Adobe Flash Player is Installed AND Flash version is before 9.0.289.0 or 10.x before 10.1.102.64 Version of Adobe Flash Player is less than 9.0.289.0 OR Adobe Flash Player 10.x before 10.1.102.64 installed Adobe Flash Player 10 is Installed AND Version of Adobe Flash Player is less than 10.1.102.64

Definition Id: oval:org.mitre.oval:def:15913

Oval ID:	oval:org.mitre.oval:def:15913
Title:	Vulnerability in parsing of a cross-domain policy file in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, does not properly handle unspecified encodings during the parsing of a cross-domain policy file, which allows remote web servers to bypass intended access restrictions via unknown vectors.
Family:	macos	Class:	vulnerability
Reference(s):	CVE-2010-3636	Version:	3
Platform(s):	Apple Mac OS X	Product(s):	Adobe Flash Player
Definition Synopsis:
Adobe Flash Player is Installed AND Flash version is before 9.0.289.0 or 10.x before 10.1.102.64 Version of Adobe Flash Player is less than 9.0.289.0 OR Adobe Flash Player 10.x before 10.1.102.64 installed Adobe Flash Player 10 is Installed AND Version of Adobe Flash Player is less than 10.1.102.64

Definition Id: oval:org.mitre.oval:def:15961

Oval ID:	oval:org.mitre.oval:def:15961
Title:	Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652.
Family:	macos	Class:	vulnerability
Reference(s):	CVE-2010-3645	Version:	3
Platform(s):	Apple Mac OS X	Product(s):	Adobe Flash Player
Definition Synopsis:
Adobe Flash Player is Installed AND Flash version is before 9.0.289.0 or 10.x before 10.1.102.64 Version of Adobe Flash Player is less than 9.0.289.0 OR Adobe Flash Player 10.x before 10.1.102.64 installed Adobe Flash Player 10 is Installed AND Version of Adobe Flash Player is less than 10.1.102.64

Definition Id: oval:org.mitre.oval:def:15971

Oval ID:	oval:org.mitre.oval:def:15971
Title:	Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, and CVE-2010-3652.
Family:	macos	Class:	vulnerability
Reference(s):	CVE-2010-3650	Version:	3
Platform(s):	Apple Mac OS X	Product(s):	Adobe Flash Player
Definition Synopsis:
Adobe Flash Player is Installed AND Flash version is before 9.0.289.0 or 10.x before 10.1.102.64 Version of Adobe Flash Player is less than 9.0.289.0 OR Adobe Flash Player 10.x before 10.1.102.64 installed Adobe Flash Player 10 is Installed AND Version of Adobe Flash Player is less than 10.1.102.64

Definition Id: oval:org.mitre.oval:def:15980

Oval ID:	oval:org.mitre.oval:def:15980
Title:	Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652.
Family:	macos	Class:	vulnerability
Reference(s):	CVE-2010-3648	Version:	3
Platform(s):	Apple Mac OS X	Product(s):	Adobe Flash Player
Definition Synopsis:
Adobe Flash Player is Installed AND Flash version is before 9.0.289.0 or 10.x before 10.1.102.64 Version of Adobe Flash Player is less than 9.0.289.0 OR Adobe Flash Player 10.x before 10.1.102.64 installed Adobe Flash Player 10 is Installed AND Version of Adobe Flash Player is less than 10.1.102.64

Definition Id: oval:org.mitre.oval:def:16140

Oval ID:	oval:org.mitre.oval:def:16140
Title:	Unspecified vulnerability in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Mac OS X, when Safari is used, allows attackers to obtain sensitive information via unknown vectors.
Family:	macos	Class:	vulnerability
Reference(s):	CVE-2010-3638	Version:	3
Platform(s):	Apple Mac OS X	Product(s):	Adobe Flash Player
Definition Synopsis:
Adobe Flash Player is Installed AND Flash version is before 9.0.289.0 or 10.x before 10.1.102.64 Version of Adobe Flash Player is less than 9.0.289.0 OR Adobe Flash Player 10.x before 10.1.102.64 installed Adobe Flash Player 10 is Installed AND Version of Adobe Flash Player is less than 10.1.102.64

Definition Id: oval:org.mitre.oval:def:16160

Oval ID:	oval:org.mitre.oval:def:16160
Title:	Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652.
Family:	macos	Class:	vulnerability
Reference(s):	CVE-2010-3647	Version:	3
Platform(s):	Apple Mac OS X	Product(s):	Adobe Flash Player
Definition Synopsis:
Adobe Flash Player is Installed AND Flash version is before 9.0.289.0 or 10.x before 10.1.102.64 Version of Adobe Flash Player is less than 9.0.289.0 OR Adobe Flash Player 10.x before 10.1.102.64 installed Adobe Flash Player 10 is Installed AND Version of Adobe Flash Player is less than 10.1.102.64

Definition Id: oval:org.mitre.oval:def:16161

Oval ID:	oval:org.mitre.oval:def:16161
Title:	Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652.
Family:	macos	Class:	vulnerability
Reference(s):	CVE-2010-3641	Version:	3
Platform(s):	Apple Mac OS X	Product(s):	Adobe Flash Player
Definition Synopsis:
Adobe Flash Player is Installed AND Flash version is before 9.0.289.0 or 10.x before 10.1.102.64 Version of Adobe Flash Player is less than 9.0.289.0 OR Adobe Flash Player 10.x before 10.1.102.64 installed Adobe Flash Player 10 is Installed AND Version of Adobe Flash Player is less than 10.1.102.64

Definition Id: oval:org.mitre.oval:def:16183

Oval ID:	oval:org.mitre.oval:def:16183
Title:	Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652.
Family:	macos	Class:	vulnerability
Reference(s):	CVE-2010-3646	Version:	3
Platform(s):	Apple Mac OS X	Product(s):	Adobe Flash Player
Definition Synopsis:
Adobe Flash Player is Installed AND Flash version is before 9.0.289.0 or 10.x before 10.1.102.64 Version of Adobe Flash Player is less than 9.0.289.0 OR Adobe Flash Player 10.x before 10.1.102.64 installed Adobe Flash Player 10 is Installed AND Version of Adobe Flash Player is less than 10.1.102.64

Definition Id: oval:org.mitre.oval:def:16220

Oval ID:	oval:org.mitre.oval:def:16220
Title:	Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652.
Family:	macos	Class:	vulnerability
Reference(s):	CVE-2010-3644	Version:	3
Platform(s):	Apple Mac OS X	Product(s):	Adobe Flash Player
Definition Synopsis:
Adobe Flash Player is Installed AND Flash version is before 9.0.289.0 or 10.x before 10.1.102.64 Version of Adobe Flash Player is less than 9.0.289.0 OR Adobe Flash Player 10.x before 10.1.102.64 installed Adobe Flash Player 10 is Installed AND Version of Adobe Flash Player is less than 10.1.102.64

Definition Id: oval:org.mitre.oval:def:16242

Oval ID:	oval:org.mitre.oval:def:16242
Title:	Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652.
Family:	macos	Class:	vulnerability
Reference(s):	CVE-2010-3643	Version:	3
Platform(s):	Apple Mac OS X	Product(s):	Adobe Flash Player
Definition Synopsis:
Adobe Flash Player is Installed AND Flash version is before 9.0.289.0 or 10.x before 10.1.102.64 Version of Adobe Flash Player is less than 9.0.289.0 OR Adobe Flash Player 10.x before 10.1.102.64 installed Adobe Flash Player 10 is Installed AND Version of Adobe Flash Player is less than 10.1.102.64

Definition Id: oval:org.mitre.oval:def:16254

Oval ID:	oval:org.mitre.oval:def:16254
Title:	Unspecified vulnerability which allows attackers to cause a denial of service or possibly execute arbitrary code in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652.
Family:	macos	Class:	vulnerability
Reference(s):	CVE-2010-3642	Version:	3
Platform(s):	Apple Mac OS X	Product(s):	Adobe Flash Player
Definition Synopsis:
Adobe Flash Player is Installed AND Flash version is before 9.0.289.0 or 10.x before 10.1.102.64 Version of Adobe Flash Player is less than 9.0.289.0 OR Adobe Flash Player 10.x before 10.1.102.64 installed Adobe Flash Player 10 is Installed AND Version of Adobe Flash Player is less than 10.1.102.64

Definition Id: oval:org.mitre.oval:def:16281

Oval ID:	oval:org.mitre.oval:def:16281
Title:	Unspecified vulnerability which cause a denial of service (memory corruption) in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64
Description:	Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652.
Family:	macos	Class:	vulnerability
Reference(s):	CVE-2010-3640	Version:	3
Platform(s):	Apple Mac OS X	Product(s):	Adobe Flash Player
Definition Synopsis:
Adobe Flash Player is Installed AND Flash version is before 9.0.289.0 or 10.x before 10.1.102.64 Version of Adobe Flash Player is less than 9.0.289.0 OR Adobe Flash Player 10.x before 10.1.102.64 installed Adobe Flash Player 10 is Installed AND Version of Adobe Flash Player is less than 10.1.102.64

Definition Id: oval:org.mitre.oval:def:6926

Oval ID:	oval:org.mitre.oval:def:6926
Title:	Untrusted search path vulnerability in Adobe Flash Player version less than 9.0.289.0 and 10.x before 10.1.102.64
Description:	Untrusted search path vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a file that is processed by Flash Player.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-3976	Version:	17
Platform(s):	Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP Microsoft Windows Server 2008 R2 Microsoft Windows 8 Microsoft Windows Server 2012 Microsoft Windows 8.1 Microsoft Windows Server 2012 R2	Product(s):	Adobe Flash Player
Definition Synopsis:
Check if Adobe Flash Player version is less than 9.0.289.0 Adobe Flash Player is installed AND Check if Adobe Flash Player version less than 9.0.289.0 OR Check if Adobe Flash Player version is 10.x before 10.1.102.64 Adobe Flash Player 10 is installed AND Check if Adobe Flash Player version less than 10.1.102.64 OR Flash.ocx section ActiveX Control is installed AND Flash.ocx versions section Flash.ocx 10 section Determine if the version of Flash.ocx is less than 10.1.102.64 AND Determine if the version of Flash.ocx is greater than or equal 10.0 OR Flash.ocx 9 section Determine if the version of Flash.ocx is less than 9.0.289.0 AND Determine if the version of Flash.ocx is greater than or equal 9.0

CPE : Common Platform Enumeration

Type	Description	Count
Application	Adobe Flash Player cpe:2.3:a:adobe:flash_player:10.1.95.2:::::::* cpe:2.3:a:adobe:flash_player:10.1.95.1:::::::* cpe:2.3:a:adobe:flash_player:10.1.92.8:::::::* cpe:2.3:a:adobe:flash_player:10.1.92.10:::::::* cpe:2.3:a:adobe:flash_player:10.1.85.3:::::::* cpe:2.3:a:adobe:flash_player:10.1.82.76:::::::* cpe:2.3:a:adobe:flash_player:10.1.53.64:::::::* cpe:2.3:a:adobe:flash_player:10.1.52.15:::::::* cpe:2.3:a:adobe:flash_player:10.1.52.14.1:::::::* cpe:2.3:a:adobe:flash_player:10.1.52.14:::::::* cpe:2.3:a:adobe:flash_player:10.1:::::::* cpe:2.3:a:adobe:flash_player:10.0.45.2:::::::* cpe:2.3:a:adobe:flash_player:10.0.42.34:::::::* cpe:2.3:a:adobe:flash_player:10.0.32.18:::::::* cpe:2.3:a:adobe:flash_player:10.0.22.87:::::::* cpe:2.3:a:adobe:flash_player:10.0.2.54:::::::* cpe:2.3:a:adobe:flash_player:10.0.15.3:::::::* cpe:2.3:a:adobe:flash_player:10.0.12.36:::::::* cpe:2.3:a:adobe:flash_player:10.0.12.10:::::::* cpe:2.3:a:adobe:flash_player:10.0.0.584:::::::* cpe:2.3:a:adobe:flash_player:10:::::::* cpe:2.3:a:adobe:flash_player:9.125.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.9.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.8.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.48.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.47.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.45.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.31.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.31:::::::* cpe:2.3:a:adobe:flash_player:9.0.283.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.280:::::::* cpe:2.3:a:adobe:flash_player:9.0.28.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.28.0::mac_os_x::::: cpe:2.3:a:adobe:flash_player:9.0.28:::::::* cpe:2.3:a:adobe:flash_player:9.0.277.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.262.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.260.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.246.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.20.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.20:::::::* cpe:2.3:a:adobe:flash_player:9.0.18d60:::::::* cpe:2.3:a:adobe:flash_player:9.0.16.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.16:::::::* cpe:2.3:a:adobe:flash_player:9.0.16::windows::::: cpe:2.3:a:adobe:flash_player:9.0.159.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.155.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.152.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.151.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.125.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.124.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.115.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.114.0:::::::* cpe:2.3:a:adobe:flash_player:9.0.112.0:::::::* cpe:2.3:a:adobe:flash_player:9.0:::::::* cpe:2.3:a:adobe:flash_player:8.0.42.0:::::::* cpe:2.3:a:adobe:flash_player:8.0.39.0:::::::* cpe:2.3:a:adobe:flash_player:8.0.35.0:::::::* cpe:2.3:a:adobe:flash_player:8.0.34.0:::::::* cpe:2.3:a:adobe:flash_player:8.0.33.0:::::::* cpe:2.3:a:adobe:flash_player:8.0.24.0:::::::* cpe:2.3:a:adobe:flash_player:8.0.22.0:::::::* cpe:2.3:a:adobe:flash_player:8.0:::::::* cpe:2.3:a:adobe:flash_player:8.0::pro::::: cpe:2.3:a:adobe:flash_player:8.0::basic::::: cpe:2.3:a:adobe:flash_player:8::professional::::: cpe:2.3:a:adobe:flash_player:8::pro::::: cpe:2.3:a:adobe:flash_player:7.2:::::::* cpe:2.3:a:adobe:flash_player:7.1.1:::::::* cpe:2.3:a:adobe:flash_player:7.1:::::::* cpe:2.3:a:adobe:flash_player:7.0.73.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.70.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.69.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.68.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.67.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.66.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.63:::::::* cpe:2.3:a:adobe:flash_player:7.0.63::linux::::: cpe:2.3:a:adobe:flash_player:7.0.61.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.60.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.53.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.25:::::::* cpe:2.3:a:adobe:flash_player:7.0.24.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.19.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.14.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.1:::::::* cpe:2.3:a:adobe:flash_player:7.0_r67::solaris::::: cpe:2.3:a:adobe:flash_player:7.0_r67:::::::* cpe:2.3:a:adobe:flash_player:7.0:::::::* cpe:2.3:a:adobe:flash_player:6.0.79:::::::* cpe:2.3:a:adobe:flash_player:6.0.21.0:::::::* cpe:2.3:a:adobe:flash_player:6:::::::* cpe:2.3:a:adobe:flash_player:5:::::::* cpe:2.3:a:adobe:flash_player:4:::::::* cpe:2.3:a:adobe:flash_player:3:::::::* cpe:2.3:a:adobe:flash_player:2:::::::* cpe:2.3:a:adobe:flash_player:mx_2004:::::::* cpe:2.3:a:adobe:flash_player:cs4::pro::::: cpe:2.3:a:adobe:flash_player:cs3::pro::::: cpe:2.3:a:adobe:flash_player:cs3::professional::::: cpe:2.3:a:adobe:flash_player:::::::: cpe:2.3:a:adobe:flash_player:::basic:::::* cpe:2.3:a:adobe:flash_player:::pro:::::* cpe:2.3:a:adobe:flash_player::::::edge::* cpe:2.3:a:adobe:flash_player::::::internet_explorer_11::* cpe:2.3:a:adobe:flash_player::::::chrome::* cpe:2.3:a:adobe:flash_player:-:::::::*	106
Application	Hp Systems Insight Manager cpe:2.3:a:hp:systems_insight_manager:6.2:::::::* cpe:2.3:a:hp:systems_insight_manager:6.1:::::::* cpe:2.3:a:hp:systems_insight_manager:6.0:::::::* cpe:2.3:a:hp:systems_insight_manager:5.3:::::::* cpe:2.3:a:hp:systems_insight_manager:5.3:update_1:::::: cpe:2.3:a:hp:systems_insight_manager:5.2:::::::* cpe:2.3:a:hp:systems_insight_manager:5.2:update_1:::::: cpe:2.3:a:hp:systems_insight_manager:5.1:::::::* cpe:2.3:a:hp:systems_insight_manager:5.0:sp2:::::: cpe:2.3:a:hp:systems_insight_manager:5.0:::::::* cpe:2.3:a:hp:systems_insight_manager:5.0:sp4:::::: cpe:2.3:a:hp:systems_insight_manager:5.0:sp3:::::: cpe:2.3:a:hp:systems_insight_manager:5.0:sp5:::::: cpe:2.3:a:hp:systems_insight_manager:5.0:sp1:::::: cpe:2.3:a:hp:systems_insight_manager:4.2:::::::* cpe:2.3:a:hp:systems_insight_manager:4.2:sp2:::::: cpe:2.3:a:hp:systems_insight_manager:4.2:sp1:::::: cpe:2.3:a:hp:systems_insight_manager:4.1:::::::* cpe:2.3:a:hp:systems_insight_manager:4.1:sp1:::::: cpe:2.3:a:hp:systems_insight_manager:4.0:::::::* cpe:2.3:a:hp:systems_insight_manager:4.0:sp1:::::: cpe:2.3:a:hp:systems_insight_manager:2.5.2.0:::::::* cpe:2.3:a:hp:systems_insight_manager:2.5:::::::* cpe:2.3:a:hp:systems_insight_manager::sp1::::::* cpe:2.3:a:hp:systems_insight_manager:::::::: cpe:2.3:a:hp:systems_insight_manager:-:::::::*	26

ExploitDB Exploits

id	Description
2010-11-05	Adobe Flash ActionIf Integer Denial of Service Vulnerability

OpenVAS Exploits

Date	Description
2011-09-07	Name : Mac OS X v10.6.4 Multiple Vulnerabilities (2010-007) File : nvt/gb_macosx_su10-007.nasl
2011-03-09	Name : Gentoo Security Advisory GLSA 201101-09 (adobe-flash) File : nvt/glsa_201101_09.nasl
2010-11-17	Name : FreeBSD Ports: linux-flashplugin File : nvt/freebsd_linux-flashplugin11.nasl
2010-11-16	Name : SuSE Update for flash-player SUSE-SA:2010:055 File : nvt/gb_suse_2010_055.nasl
2010-11-12	Name : Adobe Flash Player Multiple Vulnerabilities (Linux) File : nvt/gb_adobe_flash_player_mult_vuln_nov10_lin.nasl
2010-11-12	Name : Adobe Flash Player Multiple Vulnerabilities (Windows) File : nvt/gb_adobe_flash_player_mult_vuln_nov10_win.nasl
2010-10-28	Name : Adobe Flash Player Untrusted search path vulnerability (windows) File : nvt/gb_adobe_flash_player_untrusted_search_path_vuln_win.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
73167	HP Systems Insight Manager Unspecified CSRF
73166	HP Systems Insight Manager Unspecified XSS
69146	Adobe Flash Unspecified Cross-Domain Policy Bypass (2010-3636) Adobe Flash contains a flaw that may allow an attacker to bypass cross-domain policy file restrictions. No further details have been provided.
69135	Adobe Flash ActiveX Unspecified Memory Corruption (2010-3637) Adobe Flash contains a flaw related to the 'Flash10h.ocx' ActiveX control that may result in memory corruption, allowing an attacker to execute arbitrary code. No further details have been provided.
69134	Adobe Flash on Mac OS X Safari Unspecified Information Disclosure (2010-3638) Adobe Flash on Mac OS X Safari contains a flaw that may allow an attacker to gain access to sensitive information. No further details have been provided.
69133	Adobe Flash Unspecified DoS (2010-3639) Adobe Flash contains a flaw that may allow an attacker to cause a denial of service. No further details have been provided.
69132	Adobe Flash Unspecified Memory Corruption (2010-3640) An unspecified memory corruption flaw exists in Adobe Flash. This may allow an attacker to execute arbitrary code. No further details have been provided.
69131	Adobe Flash Unspecified Memory Corruption (2010-3641) An unspecified memory corruption flaw exists in Adobe Flash. This may allow an attacker to execute arbitrary code. No further details have been provided.
69130	Adobe Flash Unspecified Memory Corruption (2010-3642) An unspecified memory corruption flaw exists in Adobe Flash. This may allow an attacker to execute arbitrary code. No further details have been provided.
69129	Adobe Flash Unspecified Memory Corruption (2010-3643) An unspecified memory corruption flaw exists in Adobe Flash. This may allow an attacker to execute arbitrary code. No further details have been provided.
69128	Adobe Flash Unspecified Memory Corruption (2010-3644) An unspecified memory corruption flaw exists in Adobe Flash. This may allow an attacker to execute arbitrary code. No further details have been provided.
69127	Adobe Flash Unspecified Memory Corruption (2010-3645) An unspecified memory corruption flaw exists in Adobe Flash. This may allow an attacker to execute arbitrary code. No further details have been provided.
69126	Adobe Flash Unspecified Memory Corruption (2010-3646) An unspecified memory corruption flaw exists in Adobe Flash. This may allow an attacker to execute arbitrary code. No further details have been provided.
69125	Adobe Flash Unspecified Memory Corruption (2010-3647) An unspecified memory corruption flaw exists in Adobe Flash. This may allow an attacker to execute arbitrary code. No further details have been provided.
69124	Adobe Flash Unspecified Memory Corruption (2010-3648) An unspecified memory corruption flaw exists in Adobe Flash. This may allow an attacker to execute arbitrary code. No further details have been provided.
69123	Adobe Flash Unspecified Memory Corruption (2010-3649) An unspecified memory corruption flaw exists in Adobe Flash. This may allow an attacker to execute arbitrary code. No further details have been provided.
69122	Adobe Flash Unspecified Memory Corruption (2010-3650) An unspecified memory corruption flaw exists in Adobe Flash. This may allow an attacker to execute arbitrary code. No further details have been provided.
69121	Adobe Flash Unspecified Memory Corruption (2010-3652) An unspecified memory corruption flaw exists in Adobe Flash. This may allow an attacker to execute arbitrary code. No further details have been provided.
68736	Adobe Flash Player (IE Version) Path Subversion Arbitrary DLL Injection Code ...

Snort® IPS/IDS

Date	Description
2014-01-10	Multiple products dwmapi.dll dll-load exploit attempt RuleID : 19620 - Revision : 13 - Type : FILE-OTHER
2014-01-10	Multiple products request for dwmapi.dll over SMB attempt RuleID : 19618 - Revision : 13 - Type : FILE-OTHER
2014-01-10	Microsoft Office TIFF filter remote code execution attempt RuleID : 19316 - Revision : 8 - Type : FILE-OFFICE
2014-01-10	Adobe multiple products dwmapi.dll dll-load exploit attempt RuleID : 18330 - Revision : 4 - Type : NETBIOS
2014-01-10	Adobe multiple products dwmapi.dll dll-load exploit attempt RuleID : 18328 - Revision : 4 - Type : WEB-CLIENT
2014-01-10	Adobe Flash Player ActionScript remote code execution attempt RuleID : 18180 - Revision : 6 - Type : FILE-FLASH

Nessus® Vulnerability Scanner

Date	Description
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_3_flash-player-101104.nasl - Type : ACT_GATHER_INFO
2013-01-24	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2010-0829.nasl - Type : ACT_GATHER_INFO
2013-01-24	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2010-0834.nasl - Type : ACT_GATHER_INFO
2011-05-05	Name : The remote openSUSE host is missing a security update. File : suse_11_1_flash-player-101104.nasl - Type : ACT_GATHER_INFO
2011-05-05	Name : The remote openSUSE host is missing a security update. File : suse_11_2_flash-player-101104.nasl - Type : ACT_GATHER_INFO
2011-01-24	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201101-09.nasl - Type : ACT_GATHER_INFO
2010-12-02	Name : The remote SuSE 11 host is missing a security update. File : suse_11_flash-player-101104.nasl - Type : ACT_GATHER_INFO
2010-11-18	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2010-0867.nasl - Type : ACT_GATHER_INFO
2010-11-16	Name : The version of Adobe Acrobat on the remote Windows host is affected by multip... File : adobe_acrobat_apsb10-28.nasl - Type : ACT_GATHER_INFO
2010-11-16	Name : The version of Adobe Reader on the remote Windows host is affected by multipl... File : adobe_reader_apsb10-28.nasl - Type : ACT_GATHER_INFO
2010-11-15	Name : The remote Windows host contains a version of Adobe AIR that is affected by m... File : adobe_air_apsb10-26.nasl - Type : ACT_GATHER_INFO
2010-11-10	Name : The remote host is missing a Mac OS X update that fixes various security issues. File : macosx_10_6_5.nasl - Type : ACT_GATHER_INFO
2010-11-10	Name : The remote host is missing a Mac OS X update that fixes security issues. File : macosx_SecUpd2010-007.nasl - Type : ACT_GATHER_INFO
2010-11-08	Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_76b597e4e9c611df9e10001b2134ef46.nasl - Type : ACT_GATHER_INFO
2010-11-05	Name : The remote Windows host contains a browser plug-in that is affected by multip... File : flash_player_apsb10-26.nasl - Type : ACT_GATHER_INFO

Global Informations

Type	Count
CWE ID(s)	4
Oval ID(s)	32
CPE ID(s)	132
osvdb(s)	19
ExploitDB Exploit(s)	1
Openvas Exploit(s)	7
Snort® Rule(s)	6
Nessus® Exploit(s)	15

	Related
9.3	CVE-2010-3976
9.3	CVE-2010-3652
9.3	CVE-2010-3650
9.3	CVE-2010-3649
9.3	CVE-2010-3648
9.3	CVE-2010-3647
9.3	CVE-2010-3646
9.3	CVE-2010-3645
9.3	CVE-2010-3644
9.3	CVE-2010-3643
9.3	CVE-2010-3642
9.3	CVE-2010-3641
9.3	CVE-2010-3640
9.3	CVE-2010-3639
9.3	CVE-2010-3637
9.3	CVE-2010-3636
4.3	CVE-2011-1543
4.3	CVE-2011-1542
4.3	CVE-2010-3638
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 19 more Alert(s)