Lucene search

[email protected]CVE-2010-2174

HistoryJun 15, 2010 - 6:00 p.m.

CVE-2010-2174

2010-06-1518:00:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2010-2174

adobe flash player

adobe air

arbitrary code execution

security vulnerability

9.5 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.014 Low

EPSS

Percentile

86.2%

JSON

Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors, related to an “invalid pointer vulnerability” and the newfunction (0x44) operator, a different vulnerability than CVE-2010-2173.

CPENameOperatorVersion
adobe:flash_playeradobe flash playereq9.0.125.0
adobe:flash_playeradobe flash playereq9.0.48.0
adobe:flash_playeradobe flash playereq9.0.262.0
adobe:flash_playeradobe flash playereq9.0.124.0
adobe:flash_playeradobe flash playereq9.0.47.0
adobe:flash_playeradobe flash playereq9.0.20.0
adobe:flash_playeradobe flash playereq9.0.31.0
adobe:flash_playeradobe flash playereq9.0.260.0
adobe:flash_playeradobe flash playereq9.0.159.0
adobe:flash_playeradobe flash playereq9.0.16

CPE	Name	Operator	Version
adobe:flash_player	adobe flash player	eq	9.0.125.0
adobe:flash_player	adobe flash player	eq	9.0.48.0
adobe:flash_player	adobe flash player	eq	9.0.262.0
adobe:flash_player	adobe flash player	eq	9.0.124.0
adobe:flash_player	adobe flash player	eq	9.0.47.0
adobe:flash_player	adobe flash player	eq	9.0.20.0
adobe:flash_player	adobe flash player	eq	9.0.31.0
adobe:flash_player	adobe flash player	eq	9.0.260.0
adobe:flash_player	adobe flash player	eq	9.0.159.0
adobe:flash_player	adobe flash player	eq	9.0.16

Rows per page:

1-10 of 671

References

itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751

lists.apple.com/archives/security-announce/2010//Nov/msg00000.html

lists.opensuse.org/opensuse-security-announce/2010-06/msg00000.html

lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html

secunia.com/advisories/40144

secunia.com/advisories/40545

secunia.com/advisories/43026

security.gentoo.org/glsa/glsa-201101-09.xml

securitytracker.com/id?1024085

securitytracker.com/id?1024086

support.apple.com/kb/HT4435

www.adobe.com/support/security/bulletins/apsb10-14.html

www.redhat.com/support/errata/RHSA-2010-0464.html

www.redhat.com/support/errata/RHSA-2010-0470.html

www.securityfocus.com/archive/1/511849/100/0/threaded

www.securityfocus.com/bid/40759

www.securityfocus.com/bid/40805

www.turbolinux.co.jp/security/2010/TLSA-2010-19j.txt

www.us-cert.gov/cas/techalerts/TA10-162A.html

www.vupen.com/english/advisories/2010/1421

www.vupen.com/english/advisories/2010/1432

www.vupen.com/english/advisories/2010/1434

www.vupen.com/english/advisories/2010/1453

www.vupen.com/english/advisories/2010/1482

www.vupen.com/english/advisories/2010/1522

www.vupen.com/english/advisories/2010/1793

www.vupen.com/english/advisories/2011/0192

exchange.xforce.ibmcloud.com/vulnerabilities/59323

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15360

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7528

9.5 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.014 Low

EPSS

Percentile

86.2%

JSON

Related for CVE-2010-2174

prion2 ubuntucve2 cve1 securityvulns6 nessus14 redhat2 openvas12 suse1 freebsd1 gentoo1