Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:37227B38CBD904922BB3BD8CB235215F
HistoryApr 21, 2011 - 12:00 a.m.

Adobe Flash Player callMethod Bytecode Memory Corruption

2011-04-2100:00:00
SAINT Corporation
my.saintcorporation.com
33

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.972 High

EPSS

Percentile

99.8%

JSON

Added: 04/21/2011
CVE: CVE-2011-0611
BID: 47314
OSVDB: 71686

Background

Adobe Flash Player is a cross-platform browser plug-in providing visual enhancements for web pages.

Problem

A memory corruption vulnerability allows command execution when the browser loads a specially crafted Small Web Format (SWF) file.

Resolution

Upgrade to Adobe Flash Player 10.2.153.2 for Windows or higher.

References

<http://www.adobe.com/support/security/advisories/apsa11-02.html&gt;
<http://secunia.com/advisories/44119/&gt;

Limitations

Exploit works on Adobe Systems Flash Player 10.2.153.1. The targeted user must open the exploit file in Internet Explorer 7.

Platforms

Windows

Related

redhat 1
attackerkb 1
prion 1
threatpost 5
cve 1
cert 1
openvas 9
nessus 15
freebsd 1
checkpoint_advisories 1
seebug 3
exploitpack 1
ubuntucve 1
metasploit 1
saint 3
suse 1
thn 1
cisa_kev 1
packetstorm 1
exploitdb 2
securelist 1
myhack58 1
gentoo 1
redhat
redhat
(RHSA-2011:0451) Critical: flash-plugin security update
2011-04-18 00:00:00
attackerkb
attackerkb
CVE-2011-0611
2011-04-13 00:00:00
prion
prion
Type confusion
2011-04-13 14:55:00
threatpost
threatpost
Analysis of the New Adobe Flash Attacks
2011-04-13 16:13:42
Adobe Releases Patch for Flash Zero Day Hole in Reader, Acrobat
2011-04-21 20:11:41
Adobe Flash Bug Being Used in Attacks Via Word Documents
2011-04-12 11:51:03
cve
cve
CVE-2011-0611
2011-04-13 14:55:00
cert
cert
Adobe Flash Player contains unspecified code execution vulnerability
2011-04-12 00:00:00
openvas
openvas
SUSE: Security Advisory for flash-player (SUSE-SA:2011:018)
2011-04-22 00:00:00
Adobe Flash Player Arbitrary Code Execution Vulnerability (Linux)
2011-04-22 00:00:00
FreeBSD Ports: linux-flashplugin
2011-05-12 00:00:00
nessus
nessus
openSUSE Security Update : flash-player (openSUSE-SU-2011:0373-1)
2014-06-13 00:00:00
SuSE 10 Security Update : flash-player (ZYPP Patch Number 7477)
2011-12-13 00:00:00
SuSE 11.1 Security Update : flash-player (SAT Patch Number 4400)
2011-04-19 00:00:00
freebsd
freebsd
linux-flashplugin -- remote code execution vulnerability
2011-01-20 00:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player ActionScript callMethod Code Execution (APSA11-02; CVE-2011-0611)
2011-04-21 00:00:00
seebug
seebug
Adobe Reader X Atom Type Confusion Vulnerability Exploit
2014-07-01 00:00:00
Adobe Flash Player 10.2.153.1 SWF Memory Corruption Vulnerability
2011-04-24 00:00:00
Adobe Flash Player 'SWF'ζ–‡δ»ΆθΏœη¨‹ε†…ε­˜η ΄εζΌζ΄ž
2011-04-13 00:00:00
exploitpack
exploitpack
Adobe Reader X 10.0.0 10.0.1 - Atom Type Confusion
2011-07-03 00:00:00
ubuntucve
ubuntucve
CVE-2011-0611
2011-04-13 00:00:00
metasploit
metasploit
Adobe Flash Player 10.2.153.1 SWF Memory Corruption Vulnerability
2011-04-16 02:09:33
saint
saint
Adobe Flash Player callMethod Bytecode Memory Corruption
2011-04-21 00:00:00
Adobe Flash Player callMethod Bytecode Memory Corruption
2011-04-21 00:00:00
Adobe Flash Player callMethod Bytecode Memory Corruption
2011-04-21 00:00:00
suse
suse
remote code execution in flash-player
2011-04-18 16:33:38
thn
thn
Emergency Adobe Flash Player patch coming today !
2011-04-16 07:59:00
cisa_kev
cisa_kev
Adobe Flash Player Remote Code Execution Vulnerability
2022-03-03 00:00:00
packetstorm
packetstorm
Adobe Flash Player 10.2.153.1 SWF Memory Corruption Vulnerability
2011-04-17 00:00:00
exploitdb
exploitdb
Adobe Flash Player 10.2.153.1 - SWF Memory Corruption (Metasploit)
2011-04-16 00:00:00
Adobe Reader X 10.0.0 &lt; 10.0.1 - Atom Type Confusion
2011-07-03 00:00:00
securelist
securelist
Investigation Report for the September 2014 Equation malware detection incident in the US
2017-11-16 10:00:34
myhack58
myhack58
The macro perspective of the office vulnerability, 2010-2018-a vulnerability warning-the black bar safety net
2019-06-13 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2011-10-13 00:00:00

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.972 High

EPSS

Percentile

99.8%

JSON
Related for SAINT:37227B38CBD904922BB3BD8CB235215F
redhat1attackerkb1prion1threatpost5cve1cert1openvas9nessus15freebsd1checkpoint_advisories1seebug3exploitpack1ubuntucve1metasploit1saint3suse1thn1cisa_kev1packetstorm1exploitdb2securelist1myhack581gentoo1