Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:57B4EC82A14E733E11A2680CDCAD2453
HistoryAug 22, 2011 - 12:00 a.m.

Adobe Flash Player ActionScript Function Arguments Code Execution

2011-08-2200:00:00
SAINT Corporation
www.saintcorporation.com
23

0.971 High

EPSS

Percentile

99.7%

JSON

Added: 08/22/2011
CVE: CVE-2011-2110
BID: 48268
OSVDB: 73007

Background

Adobe Flash Player is a cross-platform browser plug-in providing visual enhancements for web pages.

Problem

The Adobe Flash Player ActionScript Engine is vulnerable to an information leak that can be leveraged to execute malicious code. An attacker can construct a malicious SWF file to execute arbitrary code. If the attacker persuades a victim to view a page containing this SWF file, the payload will be executed with the victim’s privileges.

Resolution

Upgrade to Adobe Flash Player 10.3.181.26 or higher.

References

<http://www.adobe.com/support/security/bulletins/apsb11-18.html&gt;

Limitations

This exploit has been tested against Adobe Flash Player 10.3.181.14, 10.3.181.22, and 10.3.181.23 on Windows XP SP3 English (DEP OptIn) and Windows 7 SP1 (DEP OptIn).

Platforms

Windows

Related

nessus 9
saint 3
seebug 2
suse 2
threatpost 3
prion 1
securityvulns 1
canvas 1
metasploit 1
cve 1
openvas 4
redhat 1
ubuntucve 1
checkpoint_advisories 1
packetstorm 1
freebsd 1
exploitdb 1
gentoo 1
nessus
nessus
openSUSE Security Update : flash-player (openSUSE-SU-2011:0637-1)
2014-06-13 00:00:00
openSUSE Security Update : flash-player (openSUSE-SU-2011:0637-1)
2014-06-13 00:00:00
Flash Player for Mac < 10.3.181.26 Remote Memory Corruption (APSB11-18)
2011-06-15 00:00:00
saint
saint
Adobe Flash Player ActionScript Function Arguments Code Execution
2011-08-22 00:00:00
Adobe Flash Player ActionScript Function Arguments Code Execution
2011-08-22 00:00:00
Adobe Flash Player ActionScript Function Arguments Code Execution
2011-08-22 00:00:00
seebug
seebug
Adobe Flash Player AVM Verification Logic Array Indexing Code Execution
2014-07-01 00:00:00
Adobe Flash PlayerθΏœη¨‹ε†…ε­˜η ΄εζΌζ΄ž
2011-06-17 00:00:00
suse
suse
flash-player: Update to 10.3.181.26 (critical)
2011-06-15 15:08:17
flash-player (critical)
2011-06-15 17:08:19
threatpost
threatpost
Attackers Exploiting Critical Flash Bug Via Drive-By Download
2011-06-20 08:24:11
Zero Day Flaws Overvalued Says New Microsoft Report
2011-10-11 17:41:11
ExploitHub Offering Bounties – And Residuals – for Exploits
2011-10-05 13:11:31
prion
prion
Memory corruption
2011-06-16 23:55:00
securityvulns
securityvulns
Adobe Flash Player memory corruption
2011-06-17 00:00:00
canvas
canvas
Immunity Canvas: FLASH_APSB11_18
2011-06-16 23:55:00
metasploit
metasploit
Adobe Flash Player AVM Verification Logic Array Indexing Code Execution
2012-06-20 02:52:37
cve
cve
CVE-2011-2110
2011-06-16 23:55:00
openvas
openvas
FreeBSD Ports: linux-flashplugin
2011-08-03 00:00:00
FreeBSD Ports: linux-flashplugin
2011-08-03 00:00:00
Gentoo Security Advisory GLSA 201110-11 (Adobe Flash Player)
2012-02-12 00:00:00
redhat
redhat
(RHSA-2011:0869) Critical: flash-plugin security update
2011-06-15 00:00:00
ubuntucve
ubuntucve
CVE-2011-2110
2011-06-16 00:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player ActionScript Rest Array Memory Corruption (APSB11-18; CVE-2011-2110)
2011-06-22 00:00:00
packetstorm
packetstorm
Adobe Flash Player AVM Verification Logic Array Indexing Code Execution
2012-06-20 00:00:00
freebsd
freebsd
linux-flashplugin -- remote code execution vulnerability
2011-05-13 00:00:00
exploitdb
exploitdb
Adobe Flash Player - AVM Verification Logic Array Indexing Code Execution (Metasploit)
2012-06-20 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2011-10-13 00:00:00

0.971 High

EPSS

Percentile

99.7%

JSON
Related for SAINT:57B4EC82A14E733E11A2680CDCAD2453
nessus9saint3seebug2suse2threatpost3prion1securityvulns1canvas1metasploit1cve1openvas4redhat1ubuntucve1checkpoint_advisories1packetstorm1freebsd1exploitdb1gentoo1