Lucene search
HistoryAug 10, 2011 - 10:55 p.m.
CVE-2011-2417
cve-2011-2417
adobe flash player
arbitrary code execution
memory corruption
denial of service
nvd
vulnerability
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
9 High
AI Score
Confidence
High
0.928 High
EPSS
Percentile
99.0%
Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1 on Windows and Mac OS X and before 2.7.1.1961 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-2135, CVE-2011-2140, and CVE-2011-2425.
Affected configurations
Node
adobeflash_playerRange≤10.3.181.36
ORadobeflash_playerMatch6.0.21.0
ORadobeflash_playerMatch6.0.79
ORadobeflash_playerMatch7.0
ORadobeflash_playerMatch7.0.1
ORadobeflash_playerMatch7.0.14.0
ORadobeflash_playerMatch7.0.19.0
ORadobeflash_playerMatch7.0.24.0
ORadobeflash_playerMatch7.0.25
ORadobeflash_playerMatch7.0.53.0
ORadobeflash_playerMatch7.0.60.0
ORadobeflash_playerMatch7.0.61.0
ORadobeflash_playerMatch7.0.63
ORadobeflash_playerMatch7.0.66.0
ORadobeflash_playerMatch7.0.67.0
ORadobeflash_playerMatch7.0.68.0
ORadobeflash_playerMatch7.0.69.0
ORadobeflash_playerMatch7.0.70.0
ORadobeflash_playerMatch7.0.73.0
ORadobeflash_playerMatch7.1
ORadobeflash_playerMatch7.1.1
ORadobeflash_playerMatch7.2
ORadobeflash_playerMatch8.0
ORadobeflash_playerMatch8.0.22.0
ORadobeflash_playerMatch8.0.24.0
ORadobeflash_playerMatch8.0.33.0
ORadobeflash_playerMatch8.0.34.0
ORadobeflash_playerMatch8.0.35.0
ORadobeflash_playerMatch8.0.39.0
ORadobeflash_playerMatch8.0.42.0
ORadobeflash_playerMatch9.0
ORadobeflash_playerMatch9.0.16
ORadobeflash_playerMatch9.0.18d60
ORadobeflash_playerMatch9.0.20
ORadobeflash_playerMatch9.0.20.0
ORadobeflash_playerMatch9.0.28
ORadobeflash_playerMatch9.0.28.0
ORadobeflash_playerMatch9.0.31
ORadobeflash_playerMatch9.0.31.0
ORadobeflash_playerMatch9.0.45.0
ORadobeflash_playerMatch9.0.47.0
ORadobeflash_playerMatch9.0.48.0
ORadobeflash_playerMatch9.0.112.0
ORadobeflash_playerMatch9.0.114.0
ORadobeflash_playerMatch9.0.115.0
ORadobeflash_playerMatch9.0.124.0
ORadobeflash_playerMatch9.0.125.0
ORadobeflash_playerMatch9.0.151.0
ORadobeflash_playerMatch9.0.152.0
ORadobeflash_playerMatch9.0.155.0
ORadobeflash_playerMatch9.0.159.0
ORadobeflash_playerMatch9.0.246.0
ORadobeflash_playerMatch9.0.260.0
ORadobeflash_playerMatch9.0.262.0
ORadobeflash_playerMatch9.0.277.0
ORadobeflash_playerMatch9.0.283.0
ORadobeflash_playerMatch9.125.0
ORadobeflash_playerMatch10.0.0.584
ORadobeflash_playerMatch10.0.12.10
ORadobeflash_playerMatch10.0.12.36
ORadobeflash_playerMatch10.0.15.3
ORadobeflash_playerMatch10.0.22.87
ORadobeflash_playerMatch10.0.32.18
ORadobeflash_playerMatch10.0.42.34
ORadobeflash_playerMatch10.0.45.2
ORadobeflash_playerMatch10.1.52.14.1
ORadobeflash_playerMatch10.1.52.15
ORadobeflash_playerMatch10.1.53.64
ORadobeflash_playerMatch10.1.82.76
ORadobeflash_playerMatch10.1.85.3
ORadobeflash_playerMatch10.1.92.8
ORadobeflash_playerMatch10.1.92.10
ORadobeflash_playerMatch10.1.95.1
ORadobeflash_playerMatch10.1.95.2
ORadobeflash_playerMatch10.1.102.64
ORadobeflash_playerMatch10.2.152
ORadobeflash_playerMatch10.2.152.32
ORadobeflash_playerMatch10.2.152.33
ORadobeflash_playerMatch10.2.154.13
ORadobeflash_playerMatch10.2.154.25
ORadobeflash_playerMatch10.2.159.1
ORadobeflash_playerMatch10.3.181.14
ORadobeflash_playerMatch10.3.181.16
ORadobeflash_playerMatch10.3.181.23
ORadobeflash_playerMatch10.3.181.34
applemac_os_x
ORlinuxlinux_kernel
ORmicrosoftwindows
ORsunsunos
Node
adobeflash_playerRange≤10.3.185.25
ORadobeflash_playerMatch10.1.92.8
ORadobeflash_playerMatch10.1.92.10
ORadobeflash_playerMatch10.1.95.2
ORadobeflash_playerMatch10.1.105.6
ORadobeflash_playerMatch10.1.106.16
ORadobeflash_playerMatch10.2.156.12
ORadobeflash_playerMatch10.2.157.51
ORadobeflash_playerMatch10.3.185.21
ORadobeflash_playerMatch10.3.185.23
googleandroid
Node
adobeadobe_airRange≤2.7
ORadobeadobe_airMatch1.0
ORadobeadobe_airMatch1.1
ORadobeadobe_airMatch1.5
ORadobeadobe_airMatch1.5.2
ORadobeadobe_airMatch1.5.3
ORadobeadobe_airMatch2.0.2
ORadobeadobe_airMatch2.0.3
ORadobeadobe_airMatch2.0.4
ORadobeadobe_airMatch2.6
applemac_os_x
ORmicrosoftwindows
Node
adobeadobe_airRange≤2.7
ORadobeadobe_airMatch1.0
ORadobeadobe_airMatch1.1
ORadobeadobe_airMatch1.5
ORadobeadobe_airMatch1.5.2
ORadobeadobe_airMatch1.5.3
ORadobeadobe_airMatch2.0.2
ORadobeadobe_airMatch2.0.3
ORadobeadobe_airMatch2.0.4
ORadobeadobe_airMatch2.6
googleandroid
References
lists.opensuse.org/opensuse-security-announce/2011-08/msg00006.html
lists.opensuse.org/opensuse-security-announce/2011-08/msg00007.html
lists.opensuse.org/opensuse-security-announce/2011-08/msg00008.html
secunia.com/advisories/48308
www.adobe.com/support/security/bulletins/apsb11-21.html
www.redhat.com/support/errata/RHSA-2011-1144.html
www.securityfocus.com/bid/49084
www.us-cert.gov/cas/techalerts/TA11-222A.html
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14015
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15998
Related
cve
cve
prion
prion
Memory corruption
2011-08-10 22:55:00
Memory corruption
2011-08-10 22:55:00
Memory corruption
2011-08-10 22:55:00
cvelist
cvelist
nvd
nvd
ubuntucve
ubuntucve
checkpoint_advisories
checkpoint_advisories
nessus
nessus
SuSE 10 Security Update : flash-player (ZYPP Patch Number 7679)
2011-12-13 00:00:00
FreeBSD : linux-flashplugin -- multiple vulnerabilities (2c12ae0c-c38d-11e0-8eb7-001b2134ef46)
2011-08-11 00:00:00
Adobe AIR < 2.7.1 Multiple Vulnerabilities (APSB11-21)
2011-08-10 00:00:00
suse
suse
remote code execution in flash-player
2011-08-11 15:39:03
flash-player (critical)
2011-08-12 05:08:25
Security update for flash-player (critical)
2011-08-12 04:08:20
openvas
openvas
FreeBSD Ports: linux-flashplugin
2011-09-21 00:00:00
Adobe Flash Player Multiple Vulnerabilities August-2011 (Linux)
2011-08-31 00:00:00
Adobe Air and Flash Player Multiple Vulnerabilities (Aug 2011) - Windows
2011-08-31 00:00:00
freebsd
freebsd
linux-flashplugin -- multiple vulnerabilities
2011-05-13 00:00:00
redhat
redhat
(RHSA-2011:1144) Critical: flash-plugin security update
2011-08-10 00:00:00
(RHSA-2011:1434) Critical: acroread security update
2011-11-08 00:00:00
securityvulns
securityvulns
saint
saint
Adobe Flash Player MP4 Sequence Parameter Set Processing
2012-02-09 00:00:00
Adobe Flash Player MP4 Sequence Parameter Set Processing
2012-02-09 00:00:00
Adobe Flash Player MP4 Sequence Parameter Set Processing
2012-02-09 00:00:00
zdi
zdi
seebug
seebug
Adobe Flash Player MP4 SequenceParameterSetNALUnit Buffer Overflow
2014-07-01 00:00:00
packetstorm
packetstorm
Adobe Flash Player Code Execution
2012-01-31 00:00:00
Adobe Flash Player MP4 SequenceParameterSetNALUnit Buffer Overflow
2012-02-10 00:00:00
exploitpack
exploitpack
Adobe Flash Player - MP4 SequenceParameterSetNALUnit Remote Code Execution
2012-01-31 00:00:00
metasploit
metasploit
Adobe Flash Player MP4 SequenceParameterSetNALUnit Buffer Overflow
2012-02-21 01:40:50
exploitdb
exploitdb
gentoo
gentoo
Adobe Reader: Multiple vulnerabilities
2012-01-30 00:00:00
Adobe Flash Player: Multiple vulnerabilities
2011-10-13 00:00:00
threatpost
threatpost
Sofacy APT28 Gang Using New Backdoors, Zero Days
2015-12-04 07:05:37
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
9 High
AI Score
Confidence
High
0.928 High
EPSS
Percentile
99.0%
Related for CVE-2011-2417