Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2010-3654
HistoryOct 29, 2010 - 12:00 a.m.

CVE-2010-3654

2010-10-2900:00:00
ubuntu.com
ubuntu.com
12

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.969 High

EPSS

Percentile

99.7%

JSON

Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows,
Mac OS X, Linux, and Solaris and 10.1.95.1 on Android, and authplay.dll
(aka AuthPlayLib.bundle or libauthplay.so.0.0.0) in Adobe Reader and
Acrobat 9.x through 9.4, allows remote attackers to execute arbitrary code
or cause a denial of service (memory corruption and application crash) via
crafted SWF content, as exploited in the wild in October 2010.

Notes

Author Note
jdstrand 10.1.85.3 and ealier are affected. Fix expected around November 15

Related

nessus 29
packetstorm 1
openvas 16
threatpost 3
checkpoint_advisories 2
saint 4
prion 1
nvd 1
cve 1
seebug 3
metasploit 1
cvelist 1
symantec 1
exploitpack 1
cert 1
canvas 1
exploitdb 2
suse 2
redhat 4
securityvulns 3
freebsd 1
gentoo 2
securelist 1
nessus
nessus
SuSE 10 Security Update : flash-player (ZYPP Patch Number 7223)
2011-01-27 00:00:00
Adobe Acrobat 9 <= 9.4 (APSA10-05)
2010-10-28 00:00:00
Adobe Reader 9 <= 9.4 (APSA10-05)
2010-10-28 00:00:00
packetstorm
packetstorm
Adobe Flash Player "Button" Remote Code Execution
2010-11-03 00:00:00
openvas
openvas
Adobe Products Content Code Execution Vulnerability (CVE-2010-3654) - Windows
2010-11-10 00:00:00
Adobe Products Content Code Execution Vulnerability (Windows)
2010-11-10 00:00:00
Adobe Products Content Code Execution Vulnerability (Linux)
2010-11-10 00:00:00
threatpost
threatpost
Adobe Releases Emergency Fix for Critical Reader Flaws
2010-11-16 19:41:53
New Adobe Flash Bug Being Exploited
2010-10-28 14:03:47
Adobe Accelerates Patch Schedule for Critical Flash Bug
2010-11-02 19:15:03
checkpoint_advisories
checkpoint_advisories
Workaround for Adobe Flash Player Flash Content Parsing Code Execution Vulnerability (APSA10-05)
2010-11-01 00:00:00
Adobe Flash Player Flash Content Parsing Code Execution (APSA10-05; CVE-2010-3654)
2010-11-01 00:00:00
saint
saint
Adobe Flash Player Flash Content Parsing Code Execution
2010-11-16 00:00:00
Adobe Flash Player Flash Content Parsing Code Execution
2010-11-16 00:00:00
Adobe Flash Player Flash Content Parsing Code Execution
2010-11-16 00:00:00
prion
prion
Memory corruption
2010-10-29 19:00:00
nvd
nvd
CVE-2010-3654
2010-10-29 19:00:02
cve
cve
CVE-2010-3654
2010-10-29 19:00:02
seebug
seebug
Adobe Flash Player "Button" Remote Code Execution
2014-07-01 00:00:00
Adobe Flash Player < 10.1.53 .64 Action Script Type Confusion Exploit (DEP+ASLR bypass)
2014-07-01 00:00:00
Adobe Flash Player authplay.dllεΊ“PDFζ–‡δ»Άθ§£ζžθΏœη¨‹δ»£η ζ‰§θ‘ŒζΌζ΄ž
2010-11-01 00:00:00
metasploit
metasploit
Adobe Flash Player "Button" Remote Code Execution
2010-11-01 22:34:13
cvelist
cvelist
CVE-2010-3654
2010-10-29 18:00:00
symantec
symantec
Adobe Acrobat, Reader, and Flash CVE-2010-3654 Remote Code Execution Vulnerability
2010-10-28 00:00:00
exploitpack
exploitpack
Adobe Flash Player 10.1.53.64 - Action Script Type Confusion (ASLR + DEP Bypass)
2011-04-19 00:00:00
cert
cert
Adobe Flash code execution vulnerability
2010-10-28 00:00:00
canvas
canvas
Immunity Canvas: ADOBE_FLASH_BUTTON
2010-10-29 19:00:00
exploitdb
exploitdb
Adobe Flash Player - &#039;Button&#039; Arbitrary Code Execution (Metasploit)
2010-11-01 00:00:00
Adobe Flash Player &lt; 10.1.53.64 - Action Script Type Confusion (ASLR + DEP Bypass)
2011-04-19 00:00:00
suse
suse
remote code execution in acoread
2010-12-08 17:17:01
remote code execution in flash-player
2010-11-05 13:12:10
redhat
redhat
(RHSA-2010:0934) Critical: acroread security update
2010-12-01 00:00:00
(RHSA-2010:0867) Critical: flash-plugin security update
2010-11-10 00:00:00
(RHSA-2010:0834) Critical: flash-plugin security update
2010-11-08 00:00:00
securityvulns
securityvulns
Adobe Flash Player multiple security vulnerabilities
2010-11-08 00:00:00
Security update available for Adobe Flash Player
2010-11-08 00:00:00
About the security content of Mac OS X v10.6.5 and Security Update 2010-007
2010-11-18 00:00:00
freebsd
freebsd
linux-flashplugin -- multiple vulnerabilities
2010-09-28 00:00:00
gentoo
gentoo
Adobe Reader: Multiple vulnerabilities
2011-01-21 00:00:00
Adobe Flash Player: Multiple vulnerabilities
2011-01-21 00:00:00
securelist
securelist
Investigation Report for the September 2014 Equation malware detection incident in the US
2017-11-16 10:00:34

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.969 High

EPSS

Percentile

99.7%

JSON
Related for UB:CVE-2010-3654
nessus29packetstorm1openvas16threatpost3checkpoint_advisories2saint4prion1nvd1cve1seebug3metasploit1cvelist1symantec1exploitpack1cert1canvas1exploitdb2suse2redhat4securityvulns3freebsd1gentoo2securelist1