ID CVE-2010-1297
Summary Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64; Adobe AIR before 2.0.2.12610; and Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Windows and Mac OS X, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted SWF content, related to authplay.dll and the ActionScript Virtual Machine 2 (AVM2) newfunction instruction, as exploited in the wild in June 2010.
References
Vulnerable Configurations
  • Adobe Flash Player 9.0.112.0
    cpe:2.3:a:adobe:flash_player:9.0.112.0
  • Adobe Flash Player 9.0.114.0
    cpe:2.3:a:adobe:flash_player:9.0.114.0
  • cpe:2.3:a:adobe:flash_player:9.0.115.0
  • Adobe Flash Player 9.0.124.0
    cpe:2.3:a:adobe:flash_player:9.0.124.0
  • Adobe Flash Player 9.0.125.0
    cpe:2.3:a:adobe:flash_player:9.0.125.0
  • Adobe Flash Player 9.0.151.0
    cpe:2.3:a:adobe:flash_player:9.0.151.0
  • Adobe Flash Player 9.0.152.0
    cpe:2.3:a:adobe:flash_player:9.0.152.0
  • Adobe Flash Player 9.0.159.0
    cpe:2.3:a:adobe:flash_player:9.0.159.0
  • cpe:2.3:a:adobe:flash_player:9.0.16
  • Adobe Flash Player 9.0.18d60
    cpe:2.3:a:adobe:flash_player:9.0.18d60
  • cpe:2.3:a:adobe:flash_player:9.0.20
  • Adobe Flash Player 9.0.20.0
    cpe:2.3:a:adobe:flash_player:9.0.20.0
  • Adobe Flash Player 9.0.246.0
    cpe:2.3:a:adobe:flash_player:9.0.246.0
  • Adobe Flash Player 9.0.260.0
    cpe:2.3:a:adobe:flash_player:9.0.260.0
  • Adobe Flash Player 9.0.28
    cpe:2.3:a:adobe:flash_player:9.0.28
  • Adobe Flash Player 9.0.28.0
    cpe:2.3:a:adobe:flash_player:9.0.28.0
  • cpe:2.3:a:adobe:flash_player:9.0.31
  • Adobe Flash Player 9.0.31.0
    cpe:2.3:a:adobe:flash_player:9.0.31.0
  • Adobe Flash Player 9.0.45.0
    cpe:2.3:a:adobe:flash_player:9.0.45.0
  • cpe:2.3:a:adobe:flash_player:9.0.47.0
  • Adobe Flash Player 9.0.48.0
    cpe:2.3:a:adobe:flash_player:9.0.48.0
  • Adobe Flash Player 9.0.262.0
    cpe:2.3:a:adobe:flash_player:9.0.262.0
  • Adobe Flash Player 10.0.0.584
    cpe:2.3:a:adobe:flash_player:10.0.0.584
  • Adobe Flash Player 10.0.12.10
    cpe:2.3:a:adobe:flash_player:10.0.12.10
  • Adobe Flash Player 10.0.12.36
    cpe:2.3:a:adobe:flash_player:10.0.12.36
  • Adobe Flash Player 10.0.15.3
    cpe:2.3:a:adobe:flash_player:10.0.15.3
  • Adobe Flash Player 10.0.22.87
    cpe:2.3:a:adobe:flash_player:10.0.22.87
  • Adobe Flash Player 10.0.32.18
    cpe:2.3:a:adobe:flash_player:10.0.32.18
  • Adobe Flash Player 10.0.42.34
    cpe:2.3:a:adobe:flash_player:10.0.42.34
  • Adobe Flash Player 10.0.45.2
    cpe:2.3:a:adobe:flash_player:10.0.45.2
  • Adobe Acrobat 9.3.2
    cpe:2.3:a:adobe:acrobat:9.3.2
  • Adobe Acrobat 9.3.1
    cpe:2.3:a:adobe:acrobat:9.3.1
  • Adobe Acrobat 9.3
    cpe:2.3:a:adobe:acrobat:9.3
  • Adobe Acrobat 9.2
    cpe:2.3:a:adobe:acrobat:9.2
  • Adobe Acrobat 9.1.3
    cpe:2.3:a:adobe:acrobat:9.1.3
  • cpe:2.3:a:adobe:acrobat:9.1.2
  • Adobe Acrobat 9.1.1
    cpe:2.3:a:adobe:acrobat:9.1.1
  • cpe:2.3:a:adobe:acrobat:9.1
  • Adobe Acrobat 9.0
    cpe:2.3:a:adobe:acrobat:9.0
  • Adobe Acrobat Reader 9.3.2
    cpe:2.3:a:adobe:acrobat_reader:9.3.2
  • Adobe Acrobat Reader 9.3.1
    cpe:2.3:a:adobe:acrobat_reader:9.3.1
  • Adobe Acrobat Reader 9.3
    cpe:2.3:a:adobe:acrobat_reader:9.3
  • Adobe Acrobat Reader 9.2
    cpe:2.3:a:adobe:acrobat_reader:9.2
  • Adobe Acrobat Reader 9.1.3
    cpe:2.3:a:adobe:acrobat_reader:9.1.3
  • Adobe Acrobat Reader 9.1.2
    cpe:2.3:a:adobe:acrobat_reader:9.1.2
  • Adobe Acrobat Reader 9.1.1
    cpe:2.3:a:adobe:acrobat_reader:9.1.1
  • Adobe Acrobat Reader 9.1
    cpe:2.3:a:adobe:acrobat_reader:9.1
  • Adobe Acrobat Reader 9.0
    cpe:2.3:a:adobe:acrobat_reader:9.0
CVSS
Base: 9.3 (as of 09-06-2010 - 15:54)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
exploit-db via4
  • description 0day Exploit for Adobe Flash and Reader PoC (from the wild). CVE-2010-1297. Remote exploits for multiple platform
    file exploits/multiple/remote/13787.txt
    id EDB-ID:13787
    last seen 2016-02-01
    modified 2010-06-09
    platform multiple
    port
    published 2010-06-09
    reporter Unknown
    source https://www.exploit-db.com/download/13787/
    title Adobe Flash and Reader - Exploit PoC 0day
    type remote
  • description Adobe Flash Player "newfunction" Invalid Pointer Use. CVE-2010-1297. Local exploit for windows platform
    id EDB-ID:16614
    last seen 2016-02-02
    modified 2010-09-20
    published 2010-09-20
    reporter metasploit
    source https://www.exploit-db.com/download/16614/
    title Adobe Flash Player "newfunction" Invalid Pointer Use
  • description Adobe Flash Player "newfunction" Invalid Pointer Use. CVE-2010-1297. Local exploit for windows platform
    id EDB-ID:16687
    last seen 2016-02-02
    modified 2010-09-25
    published 2010-09-25
    reporter metasploit
    source https://www.exploit-db.com/download/16687/
    title Adobe Flash Player "newfunction" Invalid Pointer Use
metasploit via4
  • description This module exploits a vulnerability in the DoABC tag handling within versions 9.x and 10.0 of Adobe Flash Player. Adobe Reader and Acrobat are also vulnerable, as are any other applications that may embed Flash player. Arbitrary code execution is achieved by embedding a specially crafted Flash movie into a PDF document. An AcroJS heap spray is used in order to ensure that the memory used by the invalid pointer issue is controlled. NOTE: This module uses a similar DEP bypass method to that used within the adobe_libtiff module. This method is unlikely to work across various Windows versions due a hardcoded syscall number.
    id MSF:EXPLOIT/WINDOWS/BROWSER/ADOBE_FLASHPLAYER_NEWFUNCTION
    last seen 2018-08-31
    modified 2017-09-09
    published 2010-06-10
    reliability Normal
    reporter Rapid7
    source https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/adobe_flashplayer_newfunction.rb
    title Adobe Flash Player "newfunction" Invalid Pointer Use
  • description This module exploits a vulnerability in the DoABC tag handling within versions 9.x and 10.0 of Adobe Flash Player. Adobe Reader and Acrobat are also vulnerable, as are any other applications that may embed Flash player. Arbitrary code execution is achieved by embedding a specially crafted Flash movie into a PDF document. An AcroJS heap spray is used in order to ensure that the memory used by the invalid pointer issue is controlled. NOTE: This module uses a similar DEP bypass method to that used within the adobe_libtiff module. This method is unlikely to work across various Windows versions due a the hardcoded syscall number.
    id MSF:EXPLOIT/WINDOWS/FILEFORMAT/ADOBE_FLASHPLAYER_NEWFUNCTION
    last seen 2019-03-28
    modified 2017-07-24
    published 2010-06-10
    reliability Normal
    reporter Rapid7
    source https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/adobe_flashplayer_newfunction.rb
    title Adobe Flash Player "newfunction" Invalid Pointer Use
nessus via4
  • NASL family Gentoo Local Security Checks
    NASL id GENTOO_GLSA-201009-05.NASL
    description The remote host is affected by the vulnerability described in GLSA-201009-05 (Adobe Reader: Multiple vulnerabilities) Multiple vulnerabilities were discovered in Adobe Reader. For further information please consult the CVE entries and the Adobe Security Bulletins referenced below. Impact : A remote attacker might entice a user to open a specially crafted PDF file, possibly resulting in the execution of arbitrary code with the privileges of the user running the application, or bypass intended sandbox restrictions, make cross-domain requests, inject arbitrary web script or HTML, or cause a Denial of Service condition. Workaround : There is no known workaround at this time.
    last seen 2019-02-21
    modified 2018-07-11
    plugin id 49126
    published 2010-09-08
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=49126
    title GLSA-201009-05 : Adobe Reader: Multiple vulnerabilities
  • NASL family MacOS X Local Security Checks
    NASL id MACOSX_10_6_5.NASL
    description The remote host is running a version of Mac OS X 10.6.x that is prior to 10.6.5. Mac OS X 10.6.5 contains security fixes for the following products : - AFP Server - Apache mod_perl - Apache - AppKit - ATS - CFNetwork - CoreGraphics - CoreText - CUPS - Directory Services - diskdev_cmds - Disk Images - Flash Player plug-in - gzip - Image Capture - ImageIO - Image RAW - Kernel - MySQL - neon - Networking - OpenLDAP - OpenSSL - Password Server - PHP - Printing - python - QuickLook - QuickTime - Safari RSS - Time Machine - Wiki Server - X11 - xar
    last seen 2019-02-21
    modified 2018-07-14
    plugin id 50548
    published 2010-11-10
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=50548
    title Mac OS X 10.6.x < 10.6.5 Multiple Vulnerabilities
  • NASL family MacOS X Local Security Checks
    NASL id MACOSX_SECUPD2010-007.NASL
    description The remote host is running a version of Mac OS X 10.5 that does not have Security Update 2010-007 applied. This security update contains fixes for the following products : - AFP Server - Apache mod_perl - ATS - CFNetwork - CoreGraphics - CoreText - CUPS - Directory Services - diskdev_cmds - Disk Images - Flash Player plug-in - gzip - ImageIO - Image RAW - MySQL - Password Server - PHP - Printing - python - QuickLook - Safari RSS - Wiki Server - X11
    last seen 2019-02-21
    modified 2018-07-14
    plugin id 50549
    published 2010-11-10
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=50549
    title Mac OS X Multiple Vulnerabilities (Security Update 2010-007)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_ACROREAD_JA-7086.NASL
    description Specially crafted PDF documents could crash acroread or lead to execution of arbitrary code. The fixed security issues have been tracked as : - CVE-2010-1297 - CVE-2010-1240 - CVE-2010-1285 - CVE-2010-1295 - CVE-2010-2168 - CVE-2010-2201 - CVE-2010-2202 - CVE-2010-2203 - CVE-2010-2204 - CVE-2010-2205 - CVE-2010-2206 - CVE-2010-2207 - CVE-2010-2208 - CVE-2010-2209 - CVE-2010-2210 - CVE-2010-2211 - CVE-2010-2212
    last seen 2019-02-21
    modified 2014-10-24
    plugin id 51713
    published 2011-01-27
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=51713
    title SuSE 10 Security Update : acroread (ZYPP Patch Number 7086)
  • NASL family Red Hat Local Security Checks
    NASL id REDHAT-RHSA-2010-0464.NASL
    description An updated Adobe Flash Player package that fixes multiple security issues is now available for Red Hat Enterprise Linux 5 Supplementary. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. This update fixes multiple vulnerabilities in Adobe Flash Player. These vulnerabilities are detailed on the Adobe security pages APSA10-01 and APSB10-14, listed in the References section. Multiple security flaws were found in the way flash-plugin displayed certain SWF content. An attacker could use these flaws to create a specially crafted SWF file that would cause flash-plugin to crash or, potentially, execute arbitrary code when the victim loaded a page containing the specially crafted SWF content. (CVE-2009-3793, CVE-2010-1297, CVE-2010-2160, CVE-2010-2161, CVE-2010-2162, CVE-2010-2163, CVE-2010-2164, CVE-2010-2165, CVE-2010-2166, CVE-2010-2167, CVE-2010-2169, CVE-2010-2170, CVE-2010-2171, CVE-2010-2173, CVE-2010-2174, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2180, CVE-2010-2181, CVE-2010-2182, CVE-2010-2183, CVE-2010-2184, CVE-2010-2185, CVE-2010-2186, CVE-2010-2187, CVE-2010-2188) An input sanitization flaw was found in the way flash-plugin processed certain URLs. An attacker could use this flaw to conduct cross-site scripting (XSS) attacks if a victim were tricked into visiting a specially crafted web page. (CVE-2010-2179) A denial of service flaw was found in the way flash-plugin processed certain SWF content. An attacker could use this flaw to create a specially crafted SWF file that would cause flash-plugin to crash. (CVE-2008-4546) All users of Adobe Flash Player should install this updated package, which upgrades Flash Player to version 10.1.53.64.
    last seen 2019-02-21
    modified 2018-11-28
    plugin id 63935
    published 2013-01-24
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=63935
    title RHEL 5 : flash-plugin (RHSA-2010:0464)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_11_2_ACROREAD-100706.NASL
    description Specially crafted PDF documents could crash acroread or lead to execution of arbitrary code (CVE-2010-1297, CVE-2010-1240, CVE-2010-1285, CVE-2010-1295, CVE-2010-2168, CVE-2010-2201, CVE-2010-2202, CVE-2010-2203, CVE-2010-2204, CVE-2010-2205, CVE-2010-2206, CVE-2010-2207, CVE-2010-2208, CVE-2010-2209, CVE-2010-2210, CVE-2010-2211, CVE-2010-2212).
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 47694
    published 2010-07-09
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=47694
    title openSUSE Security Update : acroread (openSUSE-SU-2010:0359-1)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_11_ACROREAD_JA-100702.NASL
    description Specially crafted PDF documents could crash acroread or lead to execution of arbitrary code. The fixed security issues have been tracked as : - CVE-2010-1297 - CVE-2010-1240 - CVE-2010-1285 - CVE-2010-1295 - CVE-2010-2168 - CVE-2010-2201 - CVE-2010-2202 - CVE-2010-2203 - CVE-2010-2204 - CVE-2010-2205 - CVE-2010-2206 - CVE-2010-2207 - CVE-2010-2208 - CVE-2010-2209 - CVE-2010-2210 - CVE-2010-2211 - CVE-2010-2212
    last seen 2019-02-21
    modified 2014-10-24
    plugin id 50886
    published 2010-12-02
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=50886
    title SuSE 11 / 11.1 Security Update : acroread (SAT Patch Numbers 2637 / 2641)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_11_1_ACROREAD-100708.NASL
    description Specially crafted PDF documents could crash acroread or lead to execution of arbitrary code (CVE-2010-1297, CVE-2010-1240, CVE-2010-1285, CVE-2010-1295, CVE-2010-2168, CVE-2010-2201, CVE-2010-2202, CVE-2010-2203, CVE-2010-2204, CVE-2010-2205, CVE-2010-2206, CVE-2010-2207, CVE-2010-2208, CVE-2010-2209, CVE-2010-2210, CVE-2010-2211, CVE-2010-2212).
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 47692
    published 2010-07-09
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=47692
    title openSUSE Security Update : acroread (openSUSE-SU-2010:0359-1)
  • NASL family Windows
    NASL id FLASH_PLAYER_APSB10-14.NASL
    description The remote Windows host contains a version of Adobe Flash Player 9.x before 9.0.277.0 or 10.x before 10.1.53.63. Such versions are affected by multiple vulnerabilities, such as memory corruption, buffer overflows, and memory exhaustion, that could be exploited to cause an application crash or even allow execution of arbitrary code.
    last seen 2019-02-21
    modified 2018-07-11
    plugin id 46859
    published 2010-06-10
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=46859
    title Flash Player < 9.0.277.0 / 10.1.53.63 Multiple Vulnerabilities (ASPB10-14)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_11_2_FLASH-PLAYER-100611.NASL
    description This Flash Player update fixes multiple critical security vulnerabilities which allow an attacker to remotely execute arbitrary code or to cause a denial of service. The following CVE numbers have been assigned : CVE-2008-4546, CVE-2009-3793, CVE-2010-1297, CVE-2010-2160, CVE-2010-2161, CVE-2010-2162, CVE-2010-2163, CVE-2010-2164, CVE-2010-2165, CVE-2010-2166, CVE-2010-2167, CVE-2010-2169, CVE-2010-2170, CVE-2010-2171, CVE-2010-2172, CVE-2010-2173, CVE-2010-2174, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2179, CVE-2010-2180, CVE-2010-2181, CVE-2010-2182, CVE-2010-2183, CVE-2010-2184, CVE-2010-2185, CVE-2010-2186, CVE-2010-2187, CVE-2010-2188, CVE-2010-2189
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 46881
    published 2010-06-14
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=46881
    title openSUSE Security Update : flash-player (openSUSE-SU-2010:0321-1)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_FLASH-PLAYER-7071.NASL
    description This update fixes multiple critical security vulnerabilities which allow an attacker to remotely execute arbitrary code or to cause a denial of service. The following CVE numbers have been assigned : - CVE-2008-4546 - CVE-2009-3793 - CVE-2010-1297 - CVE-2010-2160 - CVE-2010-2161 - CVE-2010-2162 - CVE-2010-2163 - CVE-2010-2164 - CVE-2010-2165 - CVE-2010-2166 - CVE-2010-2167 - CVE-2010-2169 - CVE-2010-2170 - CVE-2010-2171 - CVE-2010-2172 - CVE-2010-2173 - CVE-2010-2174 - CVE-2010-2175 - CVE-2010-2176 - CVE-2010-2177 - CVE-2010-2178 - CVE-2010-2179 - CVE-2010-2180 - CVE-2010-2181 - CVE-2010-2182 - CVE-2010-2183 - CVE-2010-2184 - CVE-2010-2185 - CVE-2010-2186 - CVE-2010-2187 - CVE-2010-2188 - CVE-2010-2189
    last seen 2019-02-21
    modified 2014-10-24
    plugin id 51736
    published 2011-01-27
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=51736
    title SuSE 10 Security Update : flash-player (ZYPP Patch Number 7071)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_11_0_FLASH-PLAYER-100611.NASL
    description This Flash Player update fixes multiple critical security vulnerabilities which allow an attacker to remotely execute arbitrary code or to cause a denial of service. The following CVE numbers have been assigned : CVE-2008-4546, CVE-2009-3793, CVE-2010-1297, CVE-2010-2160, CVE-2010-2161, CVE-2010-2162, CVE-2010-2163, CVE-2010-2164, CVE-2010-2165, CVE-2010-2166, CVE-2010-2167, CVE-2010-2169, CVE-2010-2170, CVE-2010-2171, CVE-2010-2172, CVE-2010-2173, CVE-2010-2174, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2179, CVE-2010-2180, CVE-2010-2181, CVE-2010-2182, CVE-2010-2183, CVE-2010-2184, CVE-2010-2185, CVE-2010-2186, CVE-2010-2187, CVE-2010-2188, CVE-2010-2189
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 46879
    published 2010-06-14
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=46879
    title openSUSE Security Update : flash-player (openSUSE-SU-2010:0321-1)
  • NASL family Windows
    NASL id ADOBE_AIR_APSB10-14.NASL
    description The remote Windows host contains a version of Adobe AIR that is earlier than 2.0.2.12610. Such versions are affected by multiple vulnerabilities, such as memory corruption, buffer overflows, and memory exhaustion, that could be exploited to cause an application crash or even allow execution of arbitrary code.
    last seen 2019-02-21
    modified 2018-06-27
    plugin id 46858
    published 2010-06-10
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=46858
    title Adobe AIR < 2.0.2.12610 Multiple Vulnerabilities (ASPB10-14)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_11_0_ACROREAD-100708.NASL
    description Specially crafted PDF documents could crash acroread or lead to execution of arbitrary code (CVE-2010-1297, CVE-2010-1240, CVE-2010-1285, CVE-2010-1295, CVE-2010-2168, CVE-2010-2201, CVE-2010-2202, CVE-2010-2203, CVE-2010-2204, CVE-2010-2205, CVE-2010-2206, CVE-2010-2207, CVE-2010-2208, CVE-2010-2209, CVE-2010-2210, CVE-2010-2211, CVE-2010-2212).
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 47690
    published 2010-07-09
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=47690
    title openSUSE Security Update : acroread (openSUSE-SU-2010:0359-1)
  • NASL family Gentoo Local Security Checks
    NASL id GENTOO_GLSA-201101-09.NASL
    description The remote host is affected by the vulnerability described in GLSA-201101-09 (Adobe Flash Player: Multiple vulnerabilities) Multiple vulnerabilities were discovered in Adobe Flash Player. For further information please consult the CVE entries and the Adobe Security Bulletins referenced below. Impact : A remote attacker could entice a user to open a specially crafted SWF file, possibly resulting in the execution of arbitrary code with the privileges of the user running the application, or a Denial of Service. Workaround : There is no known workaround at this time.
    last seen 2019-02-21
    modified 2018-07-11
    plugin id 51658
    published 2011-01-24
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=51658
    title GLSA-201101-09 : Adobe Flash Player: Multiple vulnerabilities
  • NASL family Red Hat Local Security Checks
    NASL id REDHAT-RHSA-2010-0470.NASL
    description An updated Adobe Flash Player package that fixes multiple security issues is now available for Red Hat Enterprise Linux 3 and 4 Extras. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. This update fixes multiple vulnerabilities in Adobe Flash Player. These vulnerabilities are detailed on the Adobe security page APSB10-14, listed in the References section. Multiple security flaws were found in the way flash-plugin displayed certain SWF content. An attacker could use these flaws to create a specially crafted SWF file that would cause flash-plugin to crash or, potentially, execute arbitrary code when the victim loaded a page containing the specially crafted SWF content. (CVE-2009-3793, CVE-2010-2160, CVE-2010-2161, CVE-2010-2162, CVE-2010-2163, CVE-2010-2164, CVE-2010-2165, CVE-2010-2166, CVE-2010-2167, CVE-2010-2169, CVE-2010-2170, CVE-2010-2171, CVE-2010-2172, CVE-2010-2173, CVE-2010-2174, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2180, CVE-2010-2181, CVE-2010-2182, CVE-2010-2183, CVE-2010-2184, CVE-2010-2185, CVE-2010-2186, CVE-2010-2187, CVE-2010-2188) An input sanitization flaw was found in the way flash-plugin processed certain URLs. An attacker could use this flaw to conduct cross-site scripting (XSS) attacks if a victim were tricked into visiting a specially crafted web page. (CVE-2010-2179) All users of Adobe Flash Player should install this updated package, which upgrades Flash Player to version 9.0.277.0.
    last seen 2019-02-21
    modified 2018-07-25
    plugin id 63936
    published 2013-01-24
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=63936
    title RHEL 3 / 4 : flash-plugin (RHSA-2010:0470)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_11_FLASH-PLAYER-100611.NASL
    description This update fixes multiple critical security vulnerabilities which allow an attacker to remotely execute arbitrary code or to cause a denial of service. The following CVE numbers have been assigned : - CVE-2008-4546 - CVE-2009-3793 - CVE-2010-1297 - CVE-2010-2160 - CVE-2010-2161 - CVE-2010-2162 - CVE-2010-2163 - CVE-2010-2164 - CVE-2010-2165 - CVE-2010-2166 - CVE-2010-2167 - CVE-2010-2169 - CVE-2010-2170 - CVE-2010-2171 - CVE-2010-2172 - CVE-2010-2173 - CVE-2010-2174 - CVE-2010-2175 - CVE-2010-2176 - CVE-2010-2177 - CVE-2010-2178 - CVE-2010-2179 - CVE-2010-2180 - CVE-2010-2181 - CVE-2010-2182 - CVE-2010-2183 - CVE-2010-2184 - CVE-2010-2185 - CVE-2010-2186 - CVE-2010-2187 - CVE-2010-2188 - CVE-2010-2189
    last seen 2019-02-21
    modified 2014-10-24
    plugin id 50901
    published 2010-12-02
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=50901
    title SuSE 11 / 11.1 Security Update : flash-player (SAT Patch Numbers 2539 / 2541)
  • NASL family FreeBSD Local Security Checks
    NASL id FREEBSD_PKG_144E524A77EB11DFAE06001B2134EF46.NASL
    description Adobe Product Security Incident Response Team reports : Critical vulnerabilities have been identified in Adobe Flash Player version 10.0.45.2 and earlier. These vulnerabilities could cause the application to crash and could potentially allow an attacker to take control of the affected system.
    last seen 2019-02-21
    modified 2018-11-21
    plugin id 47025
    published 2010-06-16
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=47025
    title FreeBSD : linux-flashplugin -- multiple vulnerabilities (144e524a-77eb-11df-ae06-001b2134ef46)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_11_ACROREAD-100702.NASL
    description Specially crafted PDF documents could crash acroread or lead to execution of arbitrary code. The fixed security issues have been tracked as : - CVE-2010-1297 - CVE-2010-1240 - CVE-2010-1285 - CVE-2010-1295 - CVE-2010-2168 - CVE-2010-2201 - CVE-2010-2202 - CVE-2010-2203 - CVE-2010-2204 - CVE-2010-2205 - CVE-2010-2206 - CVE-2010-2207 - CVE-2010-2208 - CVE-2010-2209 - CVE-2010-2210 - CVE-2010-2211 - CVE-2010-2212
    last seen 2019-02-21
    modified 2014-10-24
    plugin id 50882
    published 2010-12-02
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=50882
    title SuSE 11 / 11.1 Security Update : acroread (SAT Patch Numbers 2639 / 2640)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_11_1_FLASH-PLAYER-100611.NASL
    description This Flash Player update fixes multiple critical security vulnerabilities which allow an attacker to remotely execute arbitrary code or to cause a denial of service. The following CVE numbers have been assigned : CVE-2008-4546, CVE-2009-3793, CVE-2010-1297, CVE-2010-2160, CVE-2010-2161, CVE-2010-2162, CVE-2010-2163, CVE-2010-2164, CVE-2010-2165, CVE-2010-2166, CVE-2010-2167, CVE-2010-2169, CVE-2010-2170, CVE-2010-2171, CVE-2010-2172, CVE-2010-2173, CVE-2010-2174, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2179, CVE-2010-2180, CVE-2010-2181, CVE-2010-2182, CVE-2010-2183, CVE-2010-2184, CVE-2010-2185, CVE-2010-2186, CVE-2010-2187, CVE-2010-2188, CVE-2010-2189
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 46880
    published 2010-06-14
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=46880
    title openSUSE Security Update : flash-player (openSUSE-SU-2010:0321-1)
  • NASL family Windows
    NASL id ADOBE_ACROBAT_APSB10-15.NASL
    description The version of Adobe Acrobat installed on the remote host is earlier than 9.3.3 / 8.2.3. Such versions are reportedly affected by multiple vulnerabilities : - A social engineering attack could lead to code execution. (CVE-2010-1240) - Handling of an invalid pointer could lead to code execution. (CVE-2010-1285) - A memory corruption vulnerability could lead to code execution. (CVE-2010-1295) - A memory corruption vulnerability could lead to code execution. This issue is reportedly being exploited in the wild. (CVE-2010-1297) - Handling of an invalid pointer could lead to code execution. (CVE-2010-2168) - Handling of an invalid pointer could lead to code execution. (CVE-2010-2201) - A memory corruption vulnerability could lead to code execution. (CVE-2010-2202) - A denial of service vulnerability could potentially lead to code execution. (CVE-2010-2204) - It may be possible to execute arbitrary code via uninitialized memory locations. (CVE-2010-2205) - An error in array-indexing could lead to code execution. (CVE-2010-2206) - A memory corruption vulnerability could lead to code execution. (CVE-2010-2207) - Dereferencing a deleted heap object could lead to code execution. (CVE-2010-2208) - A memory corruption vulnerability could lead to code execution. (CVE-2010-2209) - A memory corruption vulnerability could lead to code execution. (CVE-2010-2210) - A memory corruption vulnerability could lead to code execution. (CVE-2010-2211) - A memory corruption vulnerability could lead to code execution. (CVE-2010-2212)
    last seen 2019-02-21
    modified 2018-09-17
    plugin id 47164
    published 2010-06-30
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=47164
    title Adobe Acrobat < 9.3.3 / 8.2.3 Multiple Vulnerabilities (APSB10-15)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_ACROREAD-7087.NASL
    description Specially crafted PDF documents could crash acroread or lead to execution of arbitrary code. The fixed security issues have been tracked as : - CVE-2010-1297 - CVE-2010-1240 - CVE-2010-1285 - CVE-2010-1295 - CVE-2010-2168 - CVE-2010-2201 - CVE-2010-2202 - CVE-2010-2203 - CVE-2010-2204 - CVE-2010-2205 - CVE-2010-2206 - CVE-2010-2207 - CVE-2010-2208 - CVE-2010-2209 - CVE-2010-2210 - CVE-2010-2211 - CVE-2010-2212
    last seen 2019-02-21
    modified 2014-10-24
    plugin id 51701
    published 2011-01-27
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=51701
    title SuSE 10 Security Update : acroread (ZYPP Patch Number 7087)
  • NASL family Windows
    NASL id ADOBE_READER_APSB10-15.NASL
    description The version of Adobe Reader installed on the remote host is earlier than 9.3.3 / 8.2.3. Such versions are reportedly affected by multiple vulnerabilities : - A social engineering attack could lead to code execution. (CVE-2010-1240) - Handling of an invalid pointer could lead to code execution. (CVE-2010-1285) - A memory corruption vulnerability could lead to code execution. (CVE-2010-1295) - A memory corruption vulnerability could lead to code execution. This issue is reportedly being exploited in the wild. (CVE-2010-1297) - Handling of an invalid pointer could lead to code execution. (CVE-2010-2168) - Handling of an invalid pointer could lead to code execution. (CVE-2010-2201) - A memory corruption vulnerability could lead to code execution. (CVE-2010-2202) - A denial of service vulnerability could potentially lead to code execution. (CVE-2010-2204) - It may be possible to execute arbitrary code via uninitialized memory locations. (CVE-2010-2205) - An error in array-indexing could lead to code execution. (CVE-2010-2206) - A memory corruption vulnerability could lead to code execution. (CVE-2010-2207) - Dereferencing a deleted heap object could lead to code execution. (CVE-2010-2208) - A memory corruption vulnerability could lead to code execution. (CVE-2010-2209) - A memory corruption vulnerability could lead to code execution. (CVE-2010-2210) - A memory corruption vulnerability could lead to code execution. (CVE-2010-2211) - A memory corruption vulnerability could lead to code execution. (CVE-2010-2212)
    last seen 2019-02-21
    modified 2018-09-17
    plugin id 47165
    published 2010-06-30
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=47165
    title Adobe Reader < 9.3.3 / 8.2.3 Multiple Vulnerabilities (APSB10-15)
  • NASL family Red Hat Local Security Checks
    NASL id REDHAT-RHSA-2010-0503.NASL
    description Updated acroread packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4 Extras and Red Hat Enterprise Linux 5 Supplementary. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. Adobe Reader allows users to view and print documents in Portable Document Format (PDF). This update fixes multiple vulnerabilities in Adobe Reader. These vulnerabilities are detailed on the Adobe security pages APSA10-01 and APSB10-15, listed in the References section. A specially crafted PDF file could cause Adobe Reader to crash or, potentially, execute arbitrary code as the user running Adobe Reader when opened. (CVE-2010-1240, CVE-2010-1285, CVE-2010-1295, CVE-2010-1297, CVE-2010-2168, CVE-2010-2201, CVE-2010-2202, CVE-2010-2203, CVE-2010-2204, CVE-2010-2205, CVE-2010-2206, CVE-2010-2207, CVE-2010-2208, CVE-2010-2209, CVE-2010-2210, CVE-2010-2211, CVE-2010-2212) All Adobe Reader users should install these updated packages. They contain Adobe Reader version 9.3.3, which is not vulnerable to these issues. All running instances of Adobe Reader must be restarted for the update to take effect.
    last seen 2019-02-21
    modified 2018-11-28
    plugin id 47869
    published 2010-07-28
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=47869
    title RHEL 4 / 5 : acroread (RHSA-2010:0503)
oval via4
accepted 2015-08-03T04:02:02.199-04:00
class vulnerability
contributors
  • name J. Daniel Brown
    organization DTCC
  • name J. Daniel Brown
    organization DTCC
  • name SecPod Team
    organization SecPod Technologies
  • name SecPod Team
    organization SecPod Technologies
  • name Shane Shaffer
    organization G2, Inc.
  • name Shane Shaffer
    organization G2, Inc.
  • name Shane Shaffer
    organization G2, Inc.
  • name Sergey Artykhov
    organization ALTX-SOFT
  • name Sergey Artykhov
    organization ALTX-SOFT
  • name Shane Shaffer
    organization G2, Inc.
  • name Maria Kedovskaya
    organization ALTX-SOFT
  • name Maria Kedovskaya
    organization ALTX-SOFT
  • name Maria Kedovskaya
    organization ALTX-SOFT
  • name Maria Kedovskaya
    organization ALTX-SOFT
  • name Maria Kedovskaya
    organization ALTX-SOFT
  • name Maria Kedovskaya
    organization ALTX-SOFT
  • name Maria Mikhno
    organization ALTX-SOFT
  • name Maria Mikhno
    organization ALTX-SOFT
  • name Maria Mikhno
    organization ALTX-SOFT
definition_extensions
  • comment Adobe Flash Player is installed
    oval oval:org.mitre.oval:def:6700
  • comment Adobe Flash Player 10 is installed
    oval oval:org.mitre.oval:def:7610
  • comment Adobe Reader 8 Series is installed
    oval oval:org.mitre.oval:def:6390
  • comment Adobe Reader 9 Series is installed
    oval oval:org.mitre.oval:def:6523
  • comment Adobe Acrobat 8 Series is installed
    oval oval:org.mitre.oval:def:6452
  • comment Adobe Acrobat 9 Series is installed
    oval oval:org.mitre.oval:def:6013
  • comment ActiveX Control is installed
    oval oval:org.mitre.oval:def:26707
description Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64; Adobe AIR before 2.0.2.12610; and Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Windows and Mac OS X, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted SWF content, related to authplay.dll and the ActionScript Virtual Machine 2 (AVM2) newfunction instruction, as exploited in the wild in June 2010.
family windows
id oval:org.mitre.oval:def:7116
status accepted
submitted 2010-06-07T10:30:00.000-05:00
title Adobe Flash Player, Acrobat Reader, and Acrobat 'authplay.dll' Remote Code Execution Vulnerability
version 82
packetstorm via4
redhat via4
advisories
  • rhsa
    id RHSA-2010:0464
  • rhsa
    id RHSA-2010:0470
refmap via4
apple APPLE-SA-2010-11-10-1
bid
  • 40586
  • 40759
cert
  • TA10-159A
  • TA10-162A
cert-vn VU#486225
confirm
exploit-db 13787
gentoo GLSA-201101-09
hp
  • HPSBMA02547
  • SSRT100179
misc
osvdb 65141
sectrack
  • 1024057
  • 1024058
  • 1024085
  • 1024086
secunia
  • 40026
  • 40034
  • 40144
  • 40545
  • 43026
suse
  • SUSE-SA:2010:024
  • SUSE-SR:2010:013
turbo TLSA-2010-19
vupen
  • ADV-2010-1348
  • ADV-2010-1349
  • ADV-2010-1421
  • ADV-2010-1432
  • ADV-2010-1434
  • ADV-2010-1453
  • ADV-2010-1482
  • ADV-2010-1522
  • ADV-2010-1636
  • ADV-2010-1793
  • ADV-2011-0192
xf adobe-authplay-code-execution(59137)
saint via4
bid 40586
description Adobe Reader authplay.dll newfunction Memory Corruption
id misc_acroread
osvdb 65141
title adobe_reader_authplaydll_newfunction
type client
Last major update 05-11-2012 - 23:39
Published 08-06-2010 - 14:30
Last modified 18-09-2017 - 21:30
Back to Top