Lucene search
HistorySep 22, 2011 - 3:38 a.m.
CVE-2011-2429
cve-2011-2429
adobe flash player
security control bypass
access restrictions
nvd
information security
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
8.3 High
AI Score
Confidence
High
0.005 Low
EPSS
Percentile
76.8%
Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186.7 on Android, allows attackers to bypass intended access restrictions and obtain sensitive information via unspecified vectors, related to a “security control bypass.”
Affected configurations
Node
adobeflash_playerRange≤10.3.183.7
ORadobeflash_playerMatch6.0.21.0
ORadobeflash_playerMatch6.0.79
ORadobeflash_playerMatch7.0
ORadobeflash_playerMatch7.0.1
ORadobeflash_playerMatch7.0.14.0
ORadobeflash_playerMatch7.0.19.0
ORadobeflash_playerMatch7.0.24.0
ORadobeflash_playerMatch7.0.25
ORadobeflash_playerMatch7.0.53.0
ORadobeflash_playerMatch7.0.60.0
ORadobeflash_playerMatch7.0.61.0
ORadobeflash_playerMatch7.0.63
ORadobeflash_playerMatch7.0.66.0
ORadobeflash_playerMatch7.0.67.0
ORadobeflash_playerMatch7.0.68.0
ORadobeflash_playerMatch7.0.69.0
ORadobeflash_playerMatch7.0.70.0
ORadobeflash_playerMatch7.0.73.0
ORadobeflash_playerMatch7.1
ORadobeflash_playerMatch7.1.1
ORadobeflash_playerMatch7.2
ORadobeflash_playerMatch8.0
ORadobeflash_playerMatch8.0.22.0
ORadobeflash_playerMatch8.0.24.0
ORadobeflash_playerMatch8.0.33.0
ORadobeflash_playerMatch8.0.34.0
ORadobeflash_playerMatch8.0.35.0
ORadobeflash_playerMatch8.0.39.0
ORadobeflash_playerMatch8.0.42.0
ORadobeflash_playerMatch9.0
ORadobeflash_playerMatch9.0.16
ORadobeflash_playerMatch9.0.18d60
ORadobeflash_playerMatch9.0.20
ORadobeflash_playerMatch9.0.20.0
ORadobeflash_playerMatch9.0.28
ORadobeflash_playerMatch9.0.28.0
ORadobeflash_playerMatch9.0.31
ORadobeflash_playerMatch9.0.31.0
ORadobeflash_playerMatch9.0.45.0
ORadobeflash_playerMatch9.0.47.0
ORadobeflash_playerMatch9.0.48.0
ORadobeflash_playerMatch9.0.112.0
ORadobeflash_playerMatch9.0.114.0
ORadobeflash_playerMatch9.0.115.0
ORadobeflash_playerMatch9.0.124.0
ORadobeflash_playerMatch9.0.125.0
ORadobeflash_playerMatch9.0.151.0
ORadobeflash_playerMatch9.0.152.0
ORadobeflash_playerMatch9.0.155.0
ORadobeflash_playerMatch9.0.159.0
ORadobeflash_playerMatch9.0.246.0
ORadobeflash_playerMatch9.0.260.0
ORadobeflash_playerMatch9.0.262.0
ORadobeflash_playerMatch9.0.277.0
ORadobeflash_playerMatch9.0.283.0
ORadobeflash_playerMatch9.125.0
ORadobeflash_playerMatch10.0.0.584
ORadobeflash_playerMatch10.0.12.10
ORadobeflash_playerMatch10.0.12.36
ORadobeflash_playerMatch10.0.15.3
ORadobeflash_playerMatch10.0.22.87
ORadobeflash_playerMatch10.0.32.18
ORadobeflash_playerMatch10.0.42.34
ORadobeflash_playerMatch10.0.45.2
ORadobeflash_playerMatch10.1.52.14.1
ORadobeflash_playerMatch10.1.52.15
ORadobeflash_playerMatch10.1.53.64
ORadobeflash_playerMatch10.1.82.76
ORadobeflash_playerMatch10.1.85.3
ORadobeflash_playerMatch10.1.92.8
ORadobeflash_playerMatch10.1.92.10
ORadobeflash_playerMatch10.1.95.1
ORadobeflash_playerMatch10.1.95.2
ORadobeflash_playerMatch10.1.102.64
ORadobeflash_playerMatch10.2.152
ORadobeflash_playerMatch10.2.152.32
ORadobeflash_playerMatch10.2.152.33
ORadobeflash_playerMatch10.2.154.13
ORadobeflash_playerMatch10.2.154.25
ORadobeflash_playerMatch10.2.159.1
ORadobeflash_playerMatch10.3.181.14
ORadobeflash_playerMatch10.3.181.16
ORadobeflash_playerMatch10.3.181.23
ORadobeflash_playerMatch10.3.181.34
ORadobeflash_playerMatch10.3.181.36
ORadobeflash_playerMatch10.3.183.5
applemac_os_x
ORlinuxlinux_kernel
ORmicrosoftwindows
ORsunsunos
Node
adobeflash_playerRange≤10.3.186.6
ORadobeflash_playerMatch10.1.92.8
ORadobeflash_playerMatch10.1.92.10
ORadobeflash_playerMatch10.1.95.2
ORadobeflash_playerMatch10.1.105.6
ORadobeflash_playerMatch10.1.106.16
ORadobeflash_playerMatch10.2.156.12
ORadobeflash_playerMatch10.2.157.51
ORadobeflash_playerMatch10.3.185.21
ORadobeflash_playerMatch10.3.185.23
ORadobeflash_playerMatch10.3.185.25
ORadobeflash_playerMatch10.3.186.3
googleandroid
References
lists.opensuse.org/opensuse-security-announce/2011-09/msg00025.html
secunia.com/advisories/48308
www.adobe.com/support/security/bulletins/apsb11-26.html
www.redhat.com/support/errata/RHSA-2011-1333.html
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14096
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16268
Related
cvelist
cvelist
CVE-2011-2429
2011-09-22 01:00:00
checkpoint_advisories
checkpoint_advisories
seebug
seebug
Adobe Flash Player安全限制绕过信息泄露漏洞
2011-09-23 00:00:00
prion
prion
Security feature bypass
2011-09-22 03:38:00
nvd
nvd
CVE-2011-2429
2011-09-22 03:38:38
ubuntucve
ubuntucve
CVE-2011-2429
2011-09-22 00:00:00
nessus
nessus
openSUSE Security Update : flash-player (openSUSE-SU-2011:1060-1)
2014-06-13 00:00:00
Flash Player < 10.3.183.10 Multiple Vulnerabilities (APSB11-26)
2011-09-22 00:00:00
SuSE 10 Security Update : flash-player (ZYPP Patch Number 7763)
2011-12-13 00:00:00
openvas
openvas
Adobe Flash Player Multiple Vulnerabilities September-2011 (Mac OS X)
2011-09-30 00:00:00
Adobe Flash Player Multiple Vulnerabilities (Sep 2011) - Mac OS X
2011-09-30 00:00:00
FreeBSD Ports: linux-flashplugin
2011-10-16 00:00:00
freebsd
freebsd
linux-flashplugin -- multiple vulnerabilities
2011-06-06 00:00:00
redhat
redhat
(RHSA-2011:1333) Critical: flash-plugin security update
2011-09-22 00:00:00
(RHSA-2011:1434) Critical: acroread security update
2011-11-08 00:00:00
suse
suse
Security update for flash-player (important)
2011-09-23 16:08:20
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2011-10-13 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
8.3 High
AI Score
Confidence
High
0.005 Low
EPSS
Percentile
76.8%
Related for CVE-2011-2429