Lucene search
HistorySep 22, 2011 - 3:38 a.m.
CVE-2011-2427
cve-2011-2427
actionscript virtual machine
avm
adobe flash player
buffer overflow
arbitrary code execution
denial of service
nvd
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
9 High
AI Score
Confidence
High
0.018 Low
EPSS
Percentile
88.4%
Stack-based buffer overflow in the ActionScript Virtual Machine (AVM) component in Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186.7 on Android, allows attackers to execute arbitrary code or cause a denial of service via unspecified vectors.
Affected configurations
Node
adobeflash_playerRange≤10.3.183.7
ORadobeflash_playerMatch6.0.21.0
ORadobeflash_playerMatch6.0.79
ORadobeflash_playerMatch7.0
ORadobeflash_playerMatch7.0.1
ORadobeflash_playerMatch7.0.14.0
ORadobeflash_playerMatch7.0.19.0
ORadobeflash_playerMatch7.0.24.0
ORadobeflash_playerMatch7.0.25
ORadobeflash_playerMatch7.0.53.0
ORadobeflash_playerMatch7.0.60.0
ORadobeflash_playerMatch7.0.61.0
ORadobeflash_playerMatch7.0.63
ORadobeflash_playerMatch7.0.66.0
ORadobeflash_playerMatch7.0.67.0
ORadobeflash_playerMatch7.0.68.0
ORadobeflash_playerMatch7.0.69.0
ORadobeflash_playerMatch7.0.70.0
ORadobeflash_playerMatch7.0.73.0
ORadobeflash_playerMatch7.1
ORadobeflash_playerMatch7.1.1
ORadobeflash_playerMatch7.2
ORadobeflash_playerMatch8.0
ORadobeflash_playerMatch8.0.22.0
ORadobeflash_playerMatch8.0.24.0
ORadobeflash_playerMatch8.0.33.0
ORadobeflash_playerMatch8.0.34.0
ORadobeflash_playerMatch8.0.35.0
ORadobeflash_playerMatch8.0.39.0
ORadobeflash_playerMatch8.0.42.0
ORadobeflash_playerMatch9.0
ORadobeflash_playerMatch9.0.16
ORadobeflash_playerMatch9.0.18d60
ORadobeflash_playerMatch9.0.20
ORadobeflash_playerMatch9.0.20.0
ORadobeflash_playerMatch9.0.28
ORadobeflash_playerMatch9.0.28.0
ORadobeflash_playerMatch9.0.31
ORadobeflash_playerMatch9.0.31.0
ORadobeflash_playerMatch9.0.45.0
ORadobeflash_playerMatch9.0.47.0
ORadobeflash_playerMatch9.0.48.0
ORadobeflash_playerMatch9.0.112.0
ORadobeflash_playerMatch9.0.114.0
ORadobeflash_playerMatch9.0.115.0
ORadobeflash_playerMatch9.0.124.0
ORadobeflash_playerMatch9.0.125.0
ORadobeflash_playerMatch9.0.151.0
ORadobeflash_playerMatch9.0.152.0
ORadobeflash_playerMatch9.0.155.0
ORadobeflash_playerMatch9.0.159.0
ORadobeflash_playerMatch9.0.246.0
ORadobeflash_playerMatch9.0.260.0
ORadobeflash_playerMatch9.0.262.0
ORadobeflash_playerMatch9.0.277.0
ORadobeflash_playerMatch9.0.283.0
ORadobeflash_playerMatch9.125.0
ORadobeflash_playerMatch10.0.0.584
ORadobeflash_playerMatch10.0.12.10
ORadobeflash_playerMatch10.0.12.36
ORadobeflash_playerMatch10.0.15.3
ORadobeflash_playerMatch10.0.22.87
ORadobeflash_playerMatch10.0.32.18
ORadobeflash_playerMatch10.0.42.34
ORadobeflash_playerMatch10.0.45.2
ORadobeflash_playerMatch10.1.52.14.1
ORadobeflash_playerMatch10.1.52.15
ORadobeflash_playerMatch10.1.53.64
ORadobeflash_playerMatch10.1.82.76
ORadobeflash_playerMatch10.1.85.3
ORadobeflash_playerMatch10.1.92.8
ORadobeflash_playerMatch10.1.92.10
ORadobeflash_playerMatch10.1.95.1
ORadobeflash_playerMatch10.1.95.2
ORadobeflash_playerMatch10.1.102.64
ORadobeflash_playerMatch10.2.152
ORadobeflash_playerMatch10.2.152.32
ORadobeflash_playerMatch10.2.152.33
ORadobeflash_playerMatch10.2.154.13
ORadobeflash_playerMatch10.2.154.25
ORadobeflash_playerMatch10.2.159.1
ORadobeflash_playerMatch10.3.181.14
ORadobeflash_playerMatch10.3.181.16
ORadobeflash_playerMatch10.3.181.23
ORadobeflash_playerMatch10.3.181.34
ORadobeflash_playerMatch10.3.181.36
ORadobeflash_playerMatch10.3.183.5
applemac_os_x
ORlinuxlinux_kernel
ORmicrosoftwindows
ORsunsunos
Node
adobeflash_playerRange≤10.3.186.6
ORadobeflash_playerMatch10.1.92.8
ORadobeflash_playerMatch10.1.92.10
ORadobeflash_playerMatch10.1.95.2
ORadobeflash_playerMatch10.1.105.6
ORadobeflash_playerMatch10.1.106.16
ORadobeflash_playerMatch10.2.156.12
ORadobeflash_playerMatch10.2.157.51
ORadobeflash_playerMatch10.3.185.21
ORadobeflash_playerMatch10.3.185.23
ORadobeflash_playerMatch10.3.185.25
ORadobeflash_playerMatch10.3.186.3
googleandroid
References
lists.opensuse.org/opensuse-security-announce/2011-09/msg00025.html
secunia.com/advisories/48308
www.adobe.com/support/security/bulletins/apsb11-26.html
www.redhat.com/support/errata/RHSA-2011-1333.html
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14125
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15950
Related
nvd
nvd
CVE-2011-2427
2011-09-22 03:38:38
ubuntucve
ubuntucve
CVE-2011-2427
2011-09-22 00:00:00
seebug
seebug
Adobe Flash Player AVM栈溢出漏洞(CVE-2011-2427)
2011-09-23 00:00:00
checkpoint_advisories
checkpoint_advisories
prion
prion
Stack overflow
2011-09-22 03:38:00
cvelist
cvelist
CVE-2011-2427
2011-09-22 01:00:00
freebsd
freebsd
linux-flashplugin -- multiple vulnerabilities
2011-06-06 00:00:00
nessus
nessus
SuSE 10 Security Update : flash-player (ZYPP Patch Number 7763)
2011-12-13 00:00:00
openSUSE Security Update : flash-player (openSUSE-SU-2011:1060-1)
2014-06-13 00:00:00
Flash Player < 10.3.183.10 Multiple Vulnerabilities (APSB11-26)
2011-09-22 00:00:00
openvas
openvas
Adobe Flash Player Multiple Vulnerabilities September-2011 (Mac OS X)
2011-09-30 00:00:00
Adobe Flash Player Multiple Vulnerabilities (Sep 2011) - Mac OS X
2011-09-30 00:00:00
Adobe Flash Player Multiple Vulnerabilities (Sep 2011) - Linux
2011-09-30 00:00:00
redhat
redhat
(RHSA-2011:1333) Critical: flash-plugin security update
2011-09-22 00:00:00
(RHSA-2011:1434) Critical: acroread security update
2011-11-08 00:00:00
suse
suse
Security update for flash-player (important)
2011-09-23 16:08:20
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2011-10-13 00:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
9 High
AI Score
Confidence
High
0.018 Low
EPSS
Percentile
88.4%
Related for CVE-2011-2427