Lucene search

K
ubuntucveUbuntu.comUB:CVE-2010-3636
HistoryNov 07, 2010 - 12:00 a.m.

CVE-2010-3636

2010-11-0700:00:00
ubuntu.com
ubuntu.com
15

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

EPSS

0.01

Percentile

83.5%

Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows,
Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, does not properly
handle unspecified encodings during the parsing of a cross-domain policy
file, which allows remote web servers to bypass intended access
restrictions via unknown vectors.

OSVersionArchitecturePackageVersionFilename
ubuntu8.04noarchadobe-flashplugin< 10.1.102.64-1UNKNOWN
ubuntu9.10noarchadobe-flashplugin< 10.1.102.64-1karmic1UNKNOWN
ubuntu10.04noarchadobe-flashplugin< 10.1.102.64-1lucid1UNKNOWN
ubuntu10.10noarchadobe-flashplugin< 10.1.102.64-1maverick1UNKNOWN
ubuntu8.04noarchflashplugin-nonfree< 10.0.1.218+really9.0.289.0ubuntu1UNKNOWN
ubuntu9.10noarchflashplugin-nonfree< 10.1.102.64ubuntu0.9.10.1UNKNOWN
ubuntu10.04noarchflashplugin-nonfree< 10.1.102.64ubuntu0.10.04.1UNKNOWN
ubuntu10.10noarchflashplugin-nonfree< 10.1.102.64ubuntu0.10.10.1UNKNOWN

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

EPSS

0.01

Percentile

83.5%