Lucene search
HistorySep 22, 2011 - 3:38 a.m.
CVE-2011-2426
cve-2011-2426
buffer overflow
adobe flash player
security vulnerability
remote code execution
nvd
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
9 High
AI Score
Confidence
High
0.102 Low
EPSS
Percentile
95.0%
Stack-based buffer overflow in the ActionScript Virtual Machine (AVM) component in Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186.7 on Android, allows remote attackers to execute arbitrary code via unspecified vectors.
Affected configurations
Node
adobeflash_playerRange≤10.3.183.7
ORadobeflash_playerMatch6.0.21.0
ORadobeflash_playerMatch6.0.79
ORadobeflash_playerMatch7.0
ORadobeflash_playerMatch7.0.1
ORadobeflash_playerMatch7.0.14.0
ORadobeflash_playerMatch7.0.19.0
ORadobeflash_playerMatch7.0.24.0
ORadobeflash_playerMatch7.0.25
ORadobeflash_playerMatch7.0.53.0
ORadobeflash_playerMatch7.0.60.0
ORadobeflash_playerMatch7.0.61.0
ORadobeflash_playerMatch7.0.63
ORadobeflash_playerMatch7.0.66.0
ORadobeflash_playerMatch7.0.67.0
ORadobeflash_playerMatch7.0.68.0
ORadobeflash_playerMatch7.0.69.0
ORadobeflash_playerMatch7.0.70.0
ORadobeflash_playerMatch7.0.73.0
ORadobeflash_playerMatch7.1
ORadobeflash_playerMatch7.1.1
ORadobeflash_playerMatch7.2
ORadobeflash_playerMatch8.0
ORadobeflash_playerMatch8.0.22.0
ORadobeflash_playerMatch8.0.24.0
ORadobeflash_playerMatch8.0.33.0
ORadobeflash_playerMatch8.0.34.0
ORadobeflash_playerMatch8.0.35.0
ORadobeflash_playerMatch8.0.39.0
ORadobeflash_playerMatch8.0.42.0
ORadobeflash_playerMatch9.0
ORadobeflash_playerMatch9.0.16
ORadobeflash_playerMatch9.0.18d60
ORadobeflash_playerMatch9.0.20
ORadobeflash_playerMatch9.0.20.0
ORadobeflash_playerMatch9.0.28
ORadobeflash_playerMatch9.0.28.0
ORadobeflash_playerMatch9.0.31
ORadobeflash_playerMatch9.0.31.0
ORadobeflash_playerMatch9.0.45.0
ORadobeflash_playerMatch9.0.47.0
ORadobeflash_playerMatch9.0.48.0
ORadobeflash_playerMatch9.0.112.0
ORadobeflash_playerMatch9.0.114.0
ORadobeflash_playerMatch9.0.115.0
ORadobeflash_playerMatch9.0.124.0
ORadobeflash_playerMatch9.0.125.0
ORadobeflash_playerMatch9.0.151.0
ORadobeflash_playerMatch9.0.152.0
ORadobeflash_playerMatch9.0.155.0
ORadobeflash_playerMatch9.0.159.0
ORadobeflash_playerMatch9.0.246.0
ORadobeflash_playerMatch9.0.260.0
ORadobeflash_playerMatch9.0.262.0
ORadobeflash_playerMatch9.0.277.0
ORadobeflash_playerMatch9.0.283.0
ORadobeflash_playerMatch9.125.0
ORadobeflash_playerMatch10.0.0.584
ORadobeflash_playerMatch10.0.12.10
ORadobeflash_playerMatch10.0.12.36
ORadobeflash_playerMatch10.0.15.3
ORadobeflash_playerMatch10.0.22.87
ORadobeflash_playerMatch10.0.32.18
ORadobeflash_playerMatch10.0.42.34
ORadobeflash_playerMatch10.0.45.2
ORadobeflash_playerMatch10.1.52.14.1
ORadobeflash_playerMatch10.1.52.15
ORadobeflash_playerMatch10.1.53.64
ORadobeflash_playerMatch10.1.82.76
ORadobeflash_playerMatch10.1.85.3
ORadobeflash_playerMatch10.1.92.8
ORadobeflash_playerMatch10.1.92.10
ORadobeflash_playerMatch10.1.95.1
ORadobeflash_playerMatch10.1.95.2
ORadobeflash_playerMatch10.1.102.64
ORadobeflash_playerMatch10.2.152
ORadobeflash_playerMatch10.2.152.32
ORadobeflash_playerMatch10.2.152.33
ORadobeflash_playerMatch10.2.154.13
ORadobeflash_playerMatch10.2.154.25
ORadobeflash_playerMatch10.2.159.1
ORadobeflash_playerMatch10.3.181.14
ORadobeflash_playerMatch10.3.181.16
ORadobeflash_playerMatch10.3.181.23
ORadobeflash_playerMatch10.3.181.34
ORadobeflash_playerMatch10.3.181.36
ORadobeflash_playerMatch10.3.183.5
applemac_os_x
ORlinuxlinux_kernel
ORmicrosoftwindows
ORsunsunos
Node
adobeflash_playerRange≤10.3.186.6
ORadobeflash_playerMatch10.1.92.8
ORadobeflash_playerMatch10.1.92.10
ORadobeflash_playerMatch10.1.95.2
ORadobeflash_playerMatch10.1.105.6
ORadobeflash_playerMatch10.1.106.16
ORadobeflash_playerMatch10.2.156.12
ORadobeflash_playerMatch10.2.157.51
ORadobeflash_playerMatch10.3.185.21
ORadobeflash_playerMatch10.3.185.23
ORadobeflash_playerMatch10.3.185.25
ORadobeflash_playerMatch10.3.186.3
googleandroid
References
lists.opensuse.org/opensuse-security-announce/2011-09/msg00025.html
secunia.com/advisories/48308
www.adobe.com/support/security/bulletins/apsb11-26.html
www.redhat.com/support/errata/RHSA-2011-1333.html
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14070
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15366
Related
ubuntucve
ubuntucve
CVE-2011-2426
2011-09-22 00:00:00
cvelist
cvelist
CVE-2011-2426
2011-09-22 01:00:00
seebug
seebug
Adobe Flash Player AVM栈溢出漏洞(CVE-2011-2426)
2011-09-23 00:00:00
nvd
nvd
CVE-2011-2426
2011-09-22 03:38:38
checkpoint_advisories
checkpoint_advisories
prion
prion
Stack overflow
2011-09-22 03:38:00
nessus
nessus
openSUSE Security Update : flash-player (openSUSE-SU-2011:1060-1)
2014-06-13 00:00:00
Flash Player < 10.3.183.10 Multiple Vulnerabilities (APSB11-26)
2011-09-22 00:00:00
SuSE 10 Security Update : flash-player (ZYPP Patch Number 7763)
2011-12-13 00:00:00
openvas
openvas
Adobe Flash Player Multiple Vulnerabilities September-2011 (Mac OS X)
2011-09-30 00:00:00
Adobe Flash Player Multiple Vulnerabilities (Sep 2011) - Mac OS X
2011-09-30 00:00:00
FreeBSD Ports: linux-flashplugin
2011-10-16 00:00:00
freebsd
freebsd
linux-flashplugin -- multiple vulnerabilities
2011-06-06 00:00:00
redhat
redhat
(RHSA-2011:1333) Critical: flash-plugin security update
2011-09-22 00:00:00
(RHSA-2011:1434) Critical: acroread security update
2011-11-08 00:00:00
suse
suse
Security update for flash-player (important)
2011-09-23 16:08:20
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2011-10-13 00:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
9 High
AI Score
Confidence
High
0.102 Low
EPSS
Percentile
95.0%
Related for CVE-2011-2426