Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2011-0609
HistoryMar 15, 2011 - 12:00 a.m.

CVE-2011-0609

2011-03-1500:00:00
ubuntu.com
ubuntu.com
13

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

0.972 High

EPSS

Percentile

99.8%

JSON

Unspecified vulnerability in Adobe Flash Player 10.2.154.13 and earlier on
Windows, Mac OS X, Linux, and Solaris; 10.1.106.16 and earlier on Android;
Adobe AIR 2.5.1 and earlier; and Authplay.dll (aka AuthPlayLib.bundle) in
Adobe Reader and Acrobat 9.x through 9.4.2 and 10.x through 10.0.1 on
Windows and Mac OS X, allows remote attackers to execute arbitrary code or
cause a denial of service (application crash) via crafted Flash content, as
demonstrated by a .swf file embedded in an Excel spreadsheet, and as
exploited in the wild in March 2011.

Notes

Author Note
mdeslaur Upstream description: “memory corruption vulnerability that could lead to code execution” upstream says acroread 9.x on UNIX isn’t affected
OSVersionArchitecturePackageVersionFilename
ubuntu8.04noarchadobe-flashplugin< 10.2.153.1-0hardy1UNKNOWN
ubuntu9.10noarchadobe-flashplugin< 10.2.153.1-0karmic1UNKNOWN
ubuntu10.04noarchadobe-flashplugin< 10.2.153.1-0lucid1UNKNOWN
ubuntu10.10noarchadobe-flashplugin< 10.2.153.1-0maverick1UNKNOWN
ubuntu8.04noarchflashplugin-nonfree< 10.2.153.1ubuntu0.8.04.2UNKNOWN
ubuntu9.10noarchflashplugin-nonfree< 10.2.153.1ubuntu0.9.10.1UNKNOWN
ubuntu10.04noarchflashplugin-nonfree< 10.2.153.1ubuntu0.10.04.1UNKNOWN
ubuntu10.10noarchflashplugin-nonfree< 10.2.153.1ubuntu0.10.10.1UNKNOWN

Related

saint 4
metasploit 1
cve 1
openvas 7
threatpost 5
thn 1
nessus 17
symantec 1
checkpoint_advisories 3
nvd 1
cert 1
packetstorm 1
attackerkb 1
cisa_kev 1
freebsd 1
redhat 1
seebug 1
prion 1
cvelist 1
exploitdb 1
securelist 1
myhack58 1
gentoo 1
saint
saint
Adobe Reader Flash AVM2 Memory Corruption
2011-03-30 00:00:00
Adobe Reader Flash AVM2 Memory Corruption
2011-03-30 00:00:00
Adobe Reader Flash AVM2 Memory Corruption
2011-03-30 00:00:00
metasploit
metasploit
Adobe Flash Player AVM Bytecode Verification Vulnerability
2011-03-23 04:31:48
cve
cve
CVE-2011-0609
2011-03-15 17:55:03
openvas
openvas
FreeBSD Ports: linux-flashplugin
2011-05-12 00:00:00
Adobe Flash Player Remote Memory Corruption Vulnerability (Linux)
2011-03-25 00:00:00
Adobe Flash Player Remote Memory Corruption Vulnerability - Linux
2011-03-25 00:00:00
threatpost
threatpost
Google Fixes Flash Bug in Chrome as Researchers Track Targeted Attacks
2011-03-17 13:12:14
APEC Host Committee Spear-Phished by China
2011-11-22 17:10:59
Adobe Warns of Attacks on Critical Flash Player Bug
2011-03-14 20:05:26
thn
thn
New Adobe Under Zero-Day Attack !
2011-03-14 19:52:00
nessus
nessus
RHEL 5 / 6 : flash-plugin (RHSA-2011:0372)
2011-03-23 00:00:00
openSUSE Security Update : flash-player (openSUSE-SU-2011:0239-1)
2014-06-13 00:00:00
SuSE 10 Security Update : flash-player (ZYPP Patch Number 7398)
2011-12-13 00:00:00
symantec
symantec
Adobe Flash Player CVE-2011-0609 'SWF' File Remote Memory Corruption Vulnerability
2011-03-14 00:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Flash AVM Bytecode Verification Code Execution - Ver2 (CVE-2011-0609)
2014-03-03 00:00:00
Adobe Flash Player Malformed SWF Memory Corruption (APSA11-01; CVE-2011-0609)
2012-05-14 00:00:00
Adobe Flash Player SWF Embedded in Excel File Code Execution (APSA11-01; CVE-2011-0609)
2011-03-14 00:00:00
nvd
nvd
CVE-2011-0609
2011-03-15 17:55:03
cert
cert
Adobe Flash Player contains unspecified code execution vulnerability
2011-03-15 00:00:00
packetstorm
packetstorm
Adobe Flash Player AVM Bytecode Verification
2011-03-23 00:00:00
attackerkb
attackerkb
CVE-2011-0609
2011-03-15 00:00:00
cisa_kev
cisa_kev
Adobe Flash Player Unspecified Vulnerability
2022-06-08 00:00:00
freebsd
freebsd
linux-flashplugin -- remote code execution vulnerability
2011-01-20 00:00:00
redhat
redhat
(RHSA-2011:0372) Critical: flash-plugin security update
2011-03-22 00:00:00
seebug
seebug
Adobe Flash Player AVM Bytecode Verification
2014-07-01 00:00:00
prion
prion
Code injection
2011-03-15 17:55:00
cvelist
cvelist
CVE-2011-0609
2011-03-15 17:00:00
exploitdb
exploitdb
Adobe Flash Player - AVM Bytecode Verification (Metasploit)
2011-03-23 00:00:00
securelist
securelist
Investigation Report for the September 2014 Equation malware detection incident in the US
2017-11-16 10:00:34
myhack58
myhack58
The macro perspective of the office vulnerability, 2010-2018-a vulnerability warning-the black bar safety net
2019-06-13 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2011-10-13 00:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

0.972 High

EPSS

Percentile

99.8%

JSON
Related for UB:CVE-2011-0609
saint4metasploit1cve1openvas7threatpost5thn1nessus17symantec1checkpoint_advisories3nvd1cert1packetstorm1attackerkb1cisa_kev1freebsd1redhat1seebug1prion1cvelist1exploitdb1securelist1myhack581gentoo1