Lucene search

K

AttackerKBAKB:60BD7DE6-0788-4B02-9B5A-0CABD5A172E0

HistoryMar 15, 2011 - 12:00 a.m.

CVE-2011-0609

2011-03-1500:00:00

attackerkb.com

12

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

0.972 High

EPSS

Percentile

99.8%

Unspecified vulnerability in Adobe Flash Player 10.2.154.13 and earlier on Windows, Mac OS X, Linux, and Solaris; 10.1.106.16 and earlier on Android; Adobe AIR 2.5.1 and earlier; and Authplay.dll (aka AuthPlayLib.bundle) in Adobe Reader and Acrobat 9.x through 9.4.2 and 10.x through 10.0.1 on Windows and Mac OS X, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted Flash content, as demonstrated by a .swf file embedded in an Excel spreadsheet, and as exploited in the wild in March 2011.

Recent assessments:

Assessed Attacker Value: 0
Assessed Attacker Value: 0Assessed Attacker Value: 0

References

blogs.adobe.com/asset/2011/03/background-on-apsa11-01-patch-schedule.html

googlechromereleases.blogspot.com/2011/03/stable-and-beta-channel-updates_15.html

lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html

secunia.com/advisories/43751

secunia.com/advisories/43757

secunia.com/advisories/43772

secunia.com/advisories/43856

securityreason.com/securityalert/8152

www.adobe.com/support/security/advisories/apsa11-01.html

www.adobe.com/support/security/bulletins/apsb11-06.html

www.kb.cert.org/vuls/id/192052

www.redhat.com/support/errata/RHSA-2011-0372.html

www.securityfocus.com/bid/46860

www.securitytracker.com/id?1025210

www.securitytracker.com/id?1025211

www.securitytracker.com/id?1025238

www.vupen.com/english/advisories/2011/0655

www.vupen.com/english/advisories/2011/0656

www.vupen.com/english/advisories/2011/0688

www.vupen.com/english/advisories/2011/0732

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0609

exchange.xforce.ibmcloud.com/vulnerabilities/66078

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14147

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

0.972 High

EPSS

Percentile

99.8%

Related for AKB:60BD7DE6-0788-4B02-9B5A-0CABD5A172E0

saint4 metasploit1 cve1 openvas7 threatpost5 thn1 nessus17 symantec1 ubuntucve1 checkpoint_advisories3 nvd1 cert1 packetstorm1 cisa_kev1 freebsd1 redhat1 seebug1 prion1 cvelist1 exploitdb1 securelist1 myhack581 gentoo1