Lucene search

[email protected]NVD:CVE-2010-0187

HistoryFeb 15, 2010 - 6:30 p.m.

CVE-2010-0187

2010-02-1518:30:00

CWE-94

[email protected]

web.nvd.nist.gov

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

6.4

Confidence

Low

EPSS

0.881

Percentile

98.7%

JSON

Adobe Flash Player before 10.0.45.2 and Adobe AIR before 1.5.3.9130 allow remote attackers to cause a denial of service (application crash) via a modified SWF file.

Affected configurations

Nvd

Node

adobeadobe_airRange≤1.5.3.9120

adobeadobe_airMatch1.0

adobeadobe_airMatch1.1

adobeadobe_airMatch1.5.1

adobeadobe_airMatch1.5.2

adobeadobe_airMatch1.5.3

adobeflash_playerRange≤10.0.42.34

adobeflash_playerMatch6.0.21.0

adobeflash_playerMatch6.0.79

adobeflash_playerMatch7.0

adobeflash_playerMatch7.0.1

adobeflash_playerMatch7.0.25

adobeflash_playerMatch7.0.63

adobeflash_playerMatch7.0.69.0

adobeflash_playerMatch7.0.70.0

adobeflash_playerMatch7.1

adobeflash_playerMatch7.1.1

adobeflash_playerMatch7.2

adobeflash_playerMatch8.0

adobeflash_playerMatch8.0.22.0

adobeflash_playerMatch8.0.24.0

adobeflash_playerMatch8.0.33.0

adobeflash_playerMatch8.0.34.0

adobeflash_playerMatch8.0.35.0

adobeflash_playerMatch8.0.39.0

adobeflash_playerMatch8.0.42.0

adobeflash_playerMatch9.0

adobeflash_playerMatch9.0.16

adobeflash_playerMatch9.0.18d60

adobeflash_playerMatch9.0.20

adobeflash_playerMatch9.0.20.0

adobeflash_playerMatch9.0.28.0

adobeflash_playerMatch9.0.31

adobeflash_playerMatch9.0.31.0

adobeflash_playerMatch9.0.45.0

adobeflash_playerMatch9.0.47.0

adobeflash_playerMatch9.0.48.0

adobeflash_playerMatch9.0.112.0

adobeflash_playerMatch9.0.114.0

adobeflash_playerMatch9.0.115.0

adobeflash_playerMatch9.0.124.0

adobeflash_playerMatch9.0.125.0

adobeflash_playerMatch9.0.151.0

adobeflash_playerMatch9.0.152.0

adobeflash_playerMatch9.0.159.0

adobeflash_playerMatch9.0.246.0

adobeflash_playerMatch9.0.260.0

adobeflash_playerMatch9.125.0

adobeflash_playerMatch10.0.12.10

adobeflash_playerMatch10.0.12.36

adobeflash_playerMatch10.0.15.3

adobeflash_playerMatch10.0.22.87

adobeflash_playerMatch10.0.32.18

References

lists.apple.com/archives/security-announce/2010//Jun/msg00001.html

lists.opensuse.org/opensuse-security-announce/2010-03/msg00004.html

sebug.net/exploit/18967/

secunia.com/advisories/38547

secunia.com/advisories/38915

secunia.com/advisories/40220

secunia.com/advisories/43026

security.gentoo.org/glsa/glsa-201101-09.xml

securitytracker.com/id?1023585

support.apple.com/kb/HT4188

www.adobe.com/support/security/bulletins/apsb10-06.html

www.exploit-db.com/exploits/11182

www.securityfocus.com/bid/38200

www.vupen.com/english/advisories/2010/1481

www.vupen.com/english/advisories/2011/0192

bugzilla.redhat.com/show_bug.cgi?id=564287

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16125

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8393

rhn.redhat.com/errata/RHSA-2010-0102.html

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

6.4

Confidence

Low

EPSS

0.881

Percentile

98.7%

JSON

Related for NVD:CVE-2010-0187

prion1 exploitdb1 cvelist1 cve1 ubuntucve1 openvas9 nessus14 redhat1 freebsd1 gentoo1