ID CVE-2011-0609
Summary Unspecified vulnerability in Adobe Flash Player 10.2.154.13 and earlier on Windows, Mac OS X, Linux, and Solaris; 10.1.106.16 and earlier on Android; Adobe AIR 2.5.1 and earlier; and Authplay.dll (aka AuthPlayLib.bundle) in Adobe Reader and Acrobat 9.x through 9.4.2 and 10.x through 10.0.1 on Windows and Mac OS X, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted Flash content, as demonstrated by a .swf file embedded in an Excel spreadsheet, and as exploited in the wild in March 2011.
References
Vulnerable Configurations
  • Adobe Flash Player 6.0.21.0
    cpe:2.3:a:adobe:flash_player:6.0.21.0
  • Adobe Flash Player 6.0.79
    cpe:2.3:a:adobe:flash_player:6.0.79
  • cpe:2.3:a:adobe:flash_player:7.0
  • Adobe Flash MX 2004
    cpe:2.3:a:adobe:flash_player:7.0.1
  • Adobe Flash MX 2004 7.0.14.0
    cpe:2.3:a:adobe:flash_player:7.0.14.0
  • Adobe Flash MX 2004 7.0.19.0
    cpe:2.3:a:adobe:flash_player:7.0.19.0
  • Adobe Flash MX 2004 7.0.24.0
    cpe:2.3:a:adobe:flash_player:7.0.24.0
  • Adobe Flash Player 7.0.25
    cpe:2.3:a:adobe:flash_player:7.0.25
  • Adobe Flash MX 2004 7.0.53.0
    cpe:2.3:a:adobe:flash_player:7.0.53.0
  • Adobe Flash MX 2004 7.0.60.0
    cpe:2.3:a:adobe:flash_player:7.0.60.0
  • Adobe Flash MX 2004 7.0.61.0
    cpe:2.3:a:adobe:flash_player:7.0.61.0
  • Adobe Flash Player 7.0.63
    cpe:2.3:a:adobe:flash_player:7.0.63
  • Adobe Flash MX 2004 7.0.66.0
    cpe:2.3:a:adobe:flash_player:7.0.66.0
  • Adobe Flash MX 2004 7.0.67.0
    cpe:2.3:a:adobe:flash_player:7.0.67.0
  • Adobe Flash MX 2004 7.0.68.0
    cpe:2.3:a:adobe:flash_player:7.0.68.0
  • Adobe Flash Player 7.0.69.0
    cpe:2.3:a:adobe:flash_player:7.0.69.0
  • cpe:2.3:a:adobe:flash_player:7.0.70.0
  • Adobe Flash MX 2004 7.0.73.0
    cpe:2.3:a:adobe:flash_player:7.0.73.0
  • cpe:2.3:a:adobe:flash_player:7.1
  • Adobe Flash MX 2004
    cpe:2.3:a:adobe:flash_player:7.1.1
  • cpe:2.3:a:adobe:flash_player:7.2
  • Adobe Flash Player 8.0
    cpe:2.3:a:adobe:flash_player:8.0
  • Adobe Flash Player 8.0.22.0
    cpe:2.3:a:adobe:flash_player:8.0.22.0
  • cpe:2.3:a:adobe:flash_player:8.0.24.0
  • Adobe Flash Player 8.0.33.0
    cpe:2.3:a:adobe:flash_player:8.0.33.0
  • Adobe Flash Player 8.0.34.0
    cpe:2.3:a:adobe:flash_player:8.0.34.0
  • cpe:2.3:a:adobe:flash_player:8.0.35.0
  • Adobe Flash Player 8.0.39.0
    cpe:2.3:a:adobe:flash_player:8.0.39.0
  • Adobe Flash Player 8.0.42.0
    cpe:2.3:a:adobe:flash_player:8.0.42.0
  • Adobe Flash Player 9.0
    cpe:2.3:a:adobe:flash_player:9.0
  • Adobe Flash Player 9.0.16
    cpe:2.3:a:adobe:flash_player:9.0.16
  • Adobe Flash Player 9.0.18d60
    cpe:2.3:a:adobe:flash_player:9.0.18d60
  • Adobe Flash Player 9.0.20
    cpe:2.3:a:adobe:flash_player:9.0.20
  • Adobe Flash Player 9.0.20.0
    cpe:2.3:a:adobe:flash_player:9.0.20.0
  • cpe:2.3:a:adobe:flash_player:9.0.28
  • cpe:2.3:a:adobe:flash_player:9.0.28.0
  • Adobe Flash Player 9.0.31
    cpe:2.3:a:adobe:flash_player:9.0.31
  • Adobe Flash Player 9.0.31.0
    cpe:2.3:a:adobe:flash_player:9.0.31.0
  • Adobe Flash Player 9.0.45.0
    cpe:2.3:a:adobe:flash_player:9.0.45.0
  • Adobe Flash Player 9.0.47.0
    cpe:2.3:a:adobe:flash_player:9.0.47.0
  • cpe:2.3:a:adobe:flash_player:9.0.48.0
  • Adobe Flash Player 9.0.112.0
    cpe:2.3:a:adobe:flash_player:9.0.112.0
  • cpe:2.3:a:adobe:flash_player:9.0.114.0
  • cpe:2.3:a:adobe:flash_player:9.0.115.0
  • Adobe Flash Player 9.0.124.0
    cpe:2.3:a:adobe:flash_player:9.0.124.0
  • Adobe Flash Player 9.0.125.0
    cpe:2.3:a:adobe:flash_player:9.0.125.0
  • Adobe Flash Player 9.0.151.0
    cpe:2.3:a:adobe:flash_player:9.0.151.0
  • Adobe Flash Player 9.0.152.0
    cpe:2.3:a:adobe:flash_player:9.0.152.0
  • Adobe Flash 9.0.155.0
    cpe:2.3:a:adobe:flash_player:9.0.155.0
  • Adobe Flash Player 9.0.159.0
    cpe:2.3:a:adobe:flash_player:9.0.159.0
  • Adobe Flash Player 9.0.246.0
    cpe:2.3:a:adobe:flash_player:9.0.246.0
  • Adobe Flash Player 9.0.260.0
    cpe:2.3:a:adobe:flash_player:9.0.260.0
  • Adobe Flash Player 9.0.262.0
    cpe:2.3:a:adobe:flash_player:9.0.262.0
  • Adobe Flash Player 9.0.277.0
    cpe:2.3:a:adobe:flash_player:9.0.277.0
  • Adobe Flash Player 9.0.283.0
    cpe:2.3:a:adobe:flash_player:9.0.283.0
  • Adobe Flash Player 9.125.0
    cpe:2.3:a:adobe:flash_player:9.125.0
  • Adobe Flash Player 10.0.0.584
    cpe:2.3:a:adobe:flash_player:10.0.0.584
  • Adobe Flash Player 10.0.12.10
    cpe:2.3:a:adobe:flash_player:10.0.12.10
  • Adobe Flash Player 10.0.12.36
    cpe:2.3:a:adobe:flash_player:10.0.12.36
  • Adobe Flash Player 10.0.15.3
    cpe:2.3:a:adobe:flash_player:10.0.15.3
  • Adobe Flash Player 10.0.22.87
    cpe:2.3:a:adobe:flash_player:10.0.22.87
  • Adobe Flash Player 10.0.32.18
    cpe:2.3:a:adobe:flash_player:10.0.32.18
  • Adobe Flash Player 10.0.42.34
    cpe:2.3:a:adobe:flash_player:10.0.42.34
  • Adobe Flash Player 10.0.45.2
    cpe:2.3:a:adobe:flash_player:10.0.45.2
  • Adobe Flash Player 10.1.52.14.1
    cpe:2.3:a:adobe:flash_player:10.1.52.14.1
  • Adobe Flash Player 10.1.52.15
    cpe:2.3:a:adobe:flash_player:10.1.52.15
  • Adobe Flash Player 10.1.53.64
    cpe:2.3:a:adobe:flash_player:10.1.53.64
  • Adobe Flash Player 10.1.82.76
    cpe:2.3:a:adobe:flash_player:10.1.82.76
  • Adobe Flash Player 10.1.85.3
    cpe:2.3:a:adobe:flash_player:10.1.85.3
  • Adobe Flash Player 10.1.92.8
    cpe:2.3:a:adobe:flash_player:10.1.92.8
  • Adobe Flash Player 10.1.92.10
    cpe:2.3:a:adobe:flash_player:10.1.92.10
  • Adobe Flash Player 10.1.95.1
    cpe:2.3:a:adobe:flash_player:10.1.95.1
  • Adobe Flash Player 10.1.95.2
    cpe:2.3:a:adobe:flash_player:10.1.95.2
  • Adobe Flash Player 10.1.102.64
    cpe:2.3:a:adobe:flash_player:10.1.102.64
  • Adobe Flash Player 10.2.152
    cpe:2.3:a:adobe:flash_player:10.2.152
  • Adobe Flash Player 10.2.152.32
    cpe:2.3:a:adobe:flash_player:10.2.152.32
  • Adobe Flash Player 10.2.152.33
    cpe:2.3:a:adobe:flash_player:10.2.152.33
  • Adobe Flash Player 10.2.154.13
    cpe:2.3:a:adobe:flash_player:10.2.154.13
  • Apple Mac OS X
    cpe:2.3:o:apple:mac_os_x
  • Linux Kernel
    cpe:2.3:o:linux:linux_kernel
  • Microsoft Windows
    cpe:2.3:o:microsoft:windows
  • cpe:2.3:o:oracle:solaris
    cpe:2.3:o:oracle:solaris
  • Adobe Flash Player 10.1.92.8
    cpe:2.3:a:adobe:flash_player:10.1.92.8
  • Adobe Flash Player 10.1.92.10
    cpe:2.3:a:adobe:flash_player:10.1.92.10
  • Adobe Flash Player 10.1.95.2
    cpe:2.3:a:adobe:flash_player:10.1.95.2
  • Adobe Flash Player 10.1.105.6
    cpe:2.3:a:adobe:flash_player:10.1.105.6
  • Adobe Flash Player 10.1.106.16
    cpe:2.3:a:adobe:flash_player:10.1.106.16
  • Google Android Operating System
    cpe:2.3:o:google:android
  • Adobe Acrobat 9.0
    cpe:2.3:a:adobe:acrobat:9.0
  • Adobe Acrobat 9.1
    cpe:2.3:a:adobe:acrobat:9.1
  • Adobe Acrobat 9.1.1
    cpe:2.3:a:adobe:acrobat:9.1.1
  • cpe:2.3:a:adobe:acrobat:9.1.2
  • Adobe Acrobat 9.1.3
    cpe:2.3:a:adobe:acrobat:9.1.3
  • Adobe Acrobat 9.2
    cpe:2.3:a:adobe:acrobat:9.2
  • Adobe Acrobat 9.3
    cpe:2.3:a:adobe:acrobat:9.3
  • Adobe Acrobat 9.3.1
    cpe:2.3:a:adobe:acrobat:9.3.1
  • Adobe Acrobat 9.3.2
    cpe:2.3:a:adobe:acrobat:9.3.2
  • Adobe Acrobat 9.3.3
    cpe:2.3:a:adobe:acrobat:9.3.3
  • Adobe Acrobat 9.3.4
    cpe:2.3:a:adobe:acrobat:9.3.4
  • Adobe Acrobat 9.4
    cpe:2.3:a:adobe:acrobat:9.4
  • Adobe Acrobat 9.4.1
    cpe:2.3:a:adobe:acrobat:9.4.1
  • Adobe Acrobat 9.4.2
    cpe:2.3:a:adobe:acrobat:9.4.2
  • Adobe Acrobat X (10.0)
    cpe:2.3:a:adobe:acrobat:10.0
  • Adobe Acrobat X (10.0.1)
    cpe:2.3:a:adobe:acrobat:10.0.1
  • Adobe Acrobat Reader 9.0
    cpe:2.3:a:adobe:acrobat_reader:9.0
  • Adobe Acrobat Reader 9.1
    cpe:2.3:a:adobe:acrobat_reader:9.1
  • Adobe Acrobat Reader 9.1.1
    cpe:2.3:a:adobe:acrobat_reader:9.1.1
  • Adobe Acrobat Reader 9.1.2
    cpe:2.3:a:adobe:acrobat_reader:9.1.2
  • Adobe Acrobat Reader 9.1.3
    cpe:2.3:a:adobe:acrobat_reader:9.1.3
  • Adobe Acrobat Reader 9.2
    cpe:2.3:a:adobe:acrobat_reader:9.2
  • Adobe Acrobat Reader 9.3
    cpe:2.3:a:adobe:acrobat_reader:9.3
  • Adobe Acrobat Reader 9.3.1
    cpe:2.3:a:adobe:acrobat_reader:9.3.1
  • Adobe Acrobat Reader 9.3.2
    cpe:2.3:a:adobe:acrobat_reader:9.3.2
  • Adobe Acrobat Reader 9.3.3
    cpe:2.3:a:adobe:acrobat_reader:9.3.3
  • Adobe Acrobat Reader 9.3.4
    cpe:2.3:a:adobe:acrobat_reader:9.3.4
  • Adobe Acrobat Reader 9.4
    cpe:2.3:a:adobe:acrobat_reader:9.4
  • Adobe Acrobat Reader 9.4.1
    cpe:2.3:a:adobe:acrobat_reader:9.4.1
  • Adobe Acrobat Reader 9.4.2
    cpe:2.3:a:adobe:acrobat_reader:9.4.2
  • Adobe Acrobat Reader X (10.0)
    cpe:2.3:a:adobe:acrobat_reader:10.0
  • Adobe Acrobat Reader X (10.0.1)
    cpe:2.3:a:adobe:acrobat_reader:10.0.1
  • Apple Mac OS X
    cpe:2.3:o:apple:mac_os_x
  • Microsoft Windows
    cpe:2.3:o:microsoft:windows
CVSS
Base: 9.3 (as of 15-03-2011 - 15:16)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
exploit-db via4
description Adobe Flash Player AVM Bytecode Verification. CVE-2011-0609. Remote exploit for windows platform
id EDB-ID:17027
last seen 2016-02-02
modified 2011-03-23
published 2011-03-23
reporter metasploit
source https://www.exploit-db.com/download/17027/
title Adobe Flash Player AVM Bytecode Verification
metasploit via4
description This module exploits a vulnerability in Adobe Flash Player versions 10.2.152.33 and earlier. This issue is caused by a failure in the ActionScript3 AVM2 verification logic. This results in unsafe JIT(Just-In-Time) code being executed. This is the same vulnerability that was used for the RSA attack in March 2011. Specifically, this issue results in uninitialized memory being referenced and later executed. Taking advantage of this issue relies on heap spraying and controlling the uninitialized memory. Currently this exploit works for IE6, IE7, and Firefox 3.6 and likely several other browsers. DEP does catch the exploit and causes it to fail. Due to the nature of the uninitialized memory its fairly difficult to get around this restriction.
id MSF:EXPLOIT/WINDOWS/BROWSER/ADOBE_FLASHPLAYER_AVM
last seen 2019-03-30
modified 2017-07-24
published 2011-03-23
reliability Good
reporter Rapid7
source https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/adobe_flashplayer_avm.rb
title Adobe Flash Player AVM Bytecode Verification Vulnerability
nessus via4
  • NASL family SuSE Local Security Checks
    NASL id SUSE_11_4_FLASH-PLAYER-110321.NASL
    description The Adobe Flash Player was updated to the 10.2.153.1, fixing several bugs and one security issue. This vulnerability (CVE-2011-0609) could cause a crash and potentially allow an attacker to take control of the affected system. There are reports that this vulnerability is being exploited in the wild in targeted attacks via a Flash (.swf) file embedded in a Microsoft Excel (.xls) file delivered as an email attachment.
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 75831
    published 2014-06-13
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=75831
    title openSUSE Security Update : flash-player (openSUSE-SU-2011:0215-1)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_11_3_FLASH-PLAYER-110321.NASL
    description The Adobe Flash Player was updated to the 10.2.153.1, fixing several bugs and one security issue. This vulnerability (CVE-2011-0609) could cause a crash and potentially allow an attacker to take control of the affected system. There are reports that this vulnerability is being exploited in the wild in targeted attacks via a Flash (.swf) file embedded in a Microsoft Excel (.xls) file delivered as an email attachment.
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 75495
    published 2014-06-13
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=75495
    title openSUSE Security Update : flash-player (openSUSE-SU-2011:0215-1)
  • NASL family Windows
    NASL id GOOGLE_CHROME_10_0_648_134.NASL
    description The version of Google Chrome installed on the remote host is earlier than 10.0.648.134. Such versions of Chrome contain a vulnerable version of Adobe Flash Player. A remote attacker could exploit this by tricking a user into viewing unspecified, malicious SWF content, resulting in arbitrary code execution. This bug is currently being exploited in the wild.
    last seen 2017-10-29
    modified 2013-11-13
    plugin id 52713
    published 2011-03-18
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=52713
    title Google Chrome < 10.0.648.134 Unspecified Adobe Flash Player
  • NASL family Red Hat Local Security Checks
    NASL id REDHAT-RHSA-2011-0372.NASL
    description An updated Adobe Flash Player package that fixes one security issue is now available for Red Hat Enterprise Linux 5 and 6 Supplementary. The Red Hat Security Response Team has rated this update as having critical security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. This update fixes one vulnerability in Adobe Flash Player. This vulnerability is detailed on the Adobe security page APSB11-05, listed in the References section. Specially crafted SWF content could cause flash-plugin to crash or, potentially, execute arbitrary code. (CVE-2011-0609) All users of Adobe Flash Player should install this updated package, which upgrades Flash Player to version 10.2.153.1.
    last seen 2019-02-21
    modified 2018-11-26
    plugin id 52760
    published 2011-03-23
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=52760
    title RHEL 5 / 6 : flash-plugin (RHSA-2011:0372)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_11_2_FLASH-PLAYER-110321.NASL
    description The Adobe Flash Player was updated to the 10.2.153.1, fixing several bugs and one security issue. This vulnerability (CVE-2011-0609) could cause a crash and potentially allow an attacker to take control of the affected system. There are reports that this vulnerability is being exploited in the wild in targeted attacks via a Flash (.swf) file embedded in a Microsoft Excel (.xls) file delivered as an email attachment.
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 53720
    published 2011-05-05
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=53720
    title openSUSE Security Update : flash-player (openSUSE-SU-2011:0215-1)
  • NASL family Gentoo Local Security Checks
    NASL id GENTOO_GLSA-201110-11.NASL
    description The remote host is affected by the vulnerability described in GLSA-201110-11 (Adobe Flash Player: Multiple vulnerabilities) Multiple vulnerabilities have been discovered in Adobe Flash Player. Please review the CVE identifiers and Adobe Security Advisories and Bulletins referenced below for details. Impact : By enticing a user to open a specially crafted SWF file a remote attacker could cause a Denial of Service or the execution of arbitrary code with the privileges of the user running the application. Workaround : There is no known workaround at this time.
    last seen 2019-02-21
    modified 2018-07-11
    plugin id 56504
    published 2011-10-14
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=56504
    title GLSA-201110-11 : Adobe Flash Player: Multiple vulnerabilities
  • NASL family Windows
    NASL id ADOBE_AIR_APSB11-05.NASL
    description The remote Windows host contains a version of Adobe AIR earlier than 2.6. Such versions are affected by a memory corruption vulnerability that could allow arbitrary code execution on the remote system or trigger a denial of service condition.
    last seen 2019-02-21
    modified 2018-06-27
    plugin id 52755
    published 2011-03-22
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=52755
    title Adobe AIR < 2.6 Unspecified Memory Corruption (APSB11-05)
  • NASL family Windows
    NASL id ADOBE_READER_APSA11-01.NASL
    description The remote Windows host contains a version of Adobe Reader 9.x < 9.4.3 or 10.x < 10.1. Such versions are affected by an unspecified memory corruption vulnerability in authplay.dll. A remote attacker could exploit this by tricking a user into viewing maliciously crafted SWF content, resulting in arbitrary code execution. This bug is currently being exploited in the wild.
    last seen 2019-02-21
    modified 2018-11-15
    plugin id 52672
    published 2011-03-15
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=52672
    title Adobe Reader 9.x / 10.x Unspecified Memory Corruption (APSB11-06)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_FLASH-PLAYER-7391.NASL
    description The Adobe Flash Player was updated to the 10.2.153.1, fixing several bugs and one security issue : - This vulnerability (CVE-2011-0609) could cause a crash and potentially allow an attacker to take control of the affected system. There are reports that this vulnerability is being exploited in the wild in targeted attacks via a Flash (.swf) file embedded in a Microsoft Excel (.xls) file delivered as an email attachment.
    last seen 2019-02-21
    modified 2013-11-19
    plugin id 52969
    published 2011-03-25
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=52969
    title SuSE 10 Security Update : flash-player (ZYPP Patch Number 7391)
  • NASL family Windows
    NASL id FLASH_PLAYER_APSA11-01.NASL
    description The remote Windows host contains a version of Adobe Flash Player earlier than 10.2.153.1. Such versions are affected by an unspecified memory corruption vulnerability. A remote attacker could exploit this by tricking a user into viewing maliciously crafted SWF content, resulting in arbitrary code execution. This bug is currently being exploited in the wild.
    last seen 2019-02-21
    modified 2018-07-11
    plugin id 52673
    published 2011-03-15
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=52673
    title Flash Player < 10.2.153.1 Unspecified Memory Corruption (APSB11-05)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_11_4_FLASH-PLAYER-110328.NASL
    description The Adobe Standalone Flash Player was updated to the 10.2.153.1, fixing several bugs and one security issue.
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 75832
    published 2014-06-13
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=75832
    title openSUSE Security Update : flash-player (openSUSE-SU-2011:0239-1)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_11_2_FLASH-PLAYER-110328.NASL
    description The Adobe Standalone Flash Player was updated to the 10.2.153.1, fixing several bugs and one security issue.
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 53721
    published 2011-05-05
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=53721
    title openSUSE Security Update : flash-player (openSUSE-SU-2011:0239-1)
  • NASL family FreeBSD Local Security Checks
    NASL id FREEBSD_PKG_501EE07A564011E0985A001B2134EF46.NASL
    description Adobe Product Security Incident Response Team reports : A critical vulnerability exists in Adobe Flash Player 10.2.152.33 and earlier versions (Adobe Flash Player 10.2.154.18 and earlier for Chrome users) for Windows, Macintosh, Linux and Solaris operating systems, Adobe Flash Player 10.1.106.16 and earlier versions for Android, and the Authplay.dll component that ships with Adobe Reader and Acrobat X (10.0.1) and earlier 10.x and 9.x versions of Reader and Acrobat for Windows and Macintosh operating systems. This vulnerability (CVE-2011-0609) could cause a crash and potentially allow an attacker to take control of the affected system. There are reports that this vulnerability is being exploited in the wild in targeted attacks via a Flash (.swf) file embedded in a Microsoft Excel (.xls) file delivered as an email attachment.
    last seen 2019-02-21
    modified 2018-11-21
    plugin id 52966
    published 2011-03-25
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=52966
    title FreeBSD : linux-flashplugin -- remote code execution vulnerability (501ee07a-5640-11e0-985a-001b2134ef46)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_11_3_FLASH-PLAYER-110328.NASL
    description The Adobe Standalone Flash Player was updated to the 10.2.153.1, fixing several bugs and one security issue.
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 75496
    published 2014-06-13
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=75496
    title openSUSE Security Update : flash-player (openSUSE-SU-2011:0239-1)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_FLASH-PLAYER-7398.NASL
    description The Adobe Flash Player was updated to the 10.2.153.1, fixing several bugs and one security issue : - This vulnerability (CVE-2011-0609) could cause a crash and potentially allow an attacker to take control of the affected system. There are reports that this vulnerability is being exploited in the wild in targeted attacks via a Flash (.swf) file embedded in a Microsoft Excel (.xls) file delivered as an email attachment.
    last seen 2019-02-21
    modified 2013-11-19
    plugin id 57188
    published 2011-12-13
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=57188
    title SuSE 10 Security Update : flash-player (ZYPP Patch Number 7398)
  • NASL family SuSE Local Security Checks
    NASL id SUSE_11_FLASH-PLAYER-110321.NASL
    description The Adobe Flash Player was updated to the 10.2.153.1, fixing several bugs and one security issue : - This vulnerability (CVE-2011-0609) could cause a crash and potentially allow an attacker to take control of the affected system. There are reports that this vulnerability is being exploited in the wild in targeted attacks via a Flash (.swf) file embedded in a Microsoft Excel (.xls) file delivered as an email attachment.
    last seen 2019-02-21
    modified 2013-11-19
    plugin id 52959
    published 2011-03-24
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=52959
    title SuSE 11.1 Security Update : flash-player (SAT Patch Number 4190)
  • NASL family Windows
    NASL id ADOBE_ACROBAT_APSA11-01.NASL
    description The remote Windows host contains a version of Adobe Acrobat 9.x < 9.4.3 or 10.x < 10.0.2. Such versions are affected by an unspecified memory corruption vulnerability in authplay.dll. A remote attacker could exploit this by tricking a user into viewing maliciously crafted SWF content, resulting in arbitrary code execution. This bug is currently being exploited in the wild.
    last seen 2019-02-21
    modified 2018-11-15
    plugin id 52671
    published 2011-03-15
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=52671
    title Adobe Acrobat 9.x / 10.x Unspecified Memory Corruption (APSB11-06)
oval via4
accepted 2015-08-03T04:00:40.859-04:00
class vulnerability
contributors
  • name Scott Quint
    organization DTCC
  • name Shane Shaffer
    organization G2, Inc.
  • name Sergey Artykhov
    organization ALTX-SOFT
  • name Sergey Artykhov
    organization ALTX-SOFT
  • name Shane Shaffer
    organization G2, Inc.
  • name Maria Kedovskaya
    organization ALTX-SOFT
  • name Maria Kedovskaya
    organization ALTX-SOFT
  • name Maria Kedovskaya
    organization ALTX-SOFT
  • name Maria Mikhno
    organization ALTX-SOFT
  • name Maria Mikhno
    organization ALTX-SOFT
  • name Maria Mikhno
    organization ALTX-SOFT
  • name Maria Mikhno
    organization ALTX-SOFT
  • name Maria Mikhno
    organization ALTX-SOFT
definition_extensions
  • comment Adobe Flash Player 9 is installed
    oval oval:org.mitre.oval:def:7402
  • comment Adobe Flash Player is installed
    oval oval:org.mitre.oval:def:6700
  • comment Adobe Flash Player is installed
    oval oval:org.mitre.oval:def:6700
  • comment Adobe Acrobat 10.x is installed
    oval oval:org.mitre.oval:def:11989
  • comment Adobe Flash Player 10 is installed
    oval oval:org.mitre.oval:def:7610
  • comment Adobe Reader 9 Series is installed
    oval oval:org.mitre.oval:def:6523
  • comment Adobe Flash Player is installed
    oval oval:org.mitre.oval:def:6700
  • comment Adobe Acrobat 9 Series is installed
    oval oval:org.mitre.oval:def:6013
  • comment Adobe Reader 10.x is installed
    oval oval:org.mitre.oval:def:12283
  • comment ActiveX Control is installed
    oval oval:org.mitre.oval:def:26707
description Unspecified vulnerability in Adobe Flash Player 10.2.154.13 and earlier on Windows, Mac OS X, Linux, and Solaris; 10.1.106.16 and earlier on Android; Adobe AIR 2.5.1 and earlier; and Authplay.dll (aka AuthPlayLib.bundle) in Adobe Reader and Acrobat 9.x through 9.4.2 and 10.x through 10.0.1 on Windows and Mac OS X, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted Flash content, as demonstrated by a .swf file embedded in an Excel spreadsheet, and as exploited in the wild in March 2011.
family windows
id oval:org.mitre.oval:def:14147
status accepted
submitted 2011-11-04T14:32:53.000-05:00
title Unspecified vulnerability in Adobe Flash Player 10.2.154.13 and earlier on Windows, Mac OS X, Linux, and Solaris; 10.1.106.16 and earlier on Android; Adobe AIR 2.5.1 and earlier; and Authplay.dll (aka AuthPlayLib.bundle) in Adobe Reader and Acrobat 9.x through 9.4.2 and 10.x through 10.0.1 on Windows and Mac OS X, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted Flash content, as demonstrated by a .swf file embedded in an Excel spreadsheet, and as exploited in the wild in March 2011.
version 74
packetstorm via4
data source https://packetstormsecurity.com/files/download/99639/adobe_flashplayer_avm.rb.txt
id PACKETSTORM:99639
last seen 2016-12-05
published 2011-03-23
reporter bannedit
source https://packetstormsecurity.com/files/99639/Adobe-Flash-Player-AVM-Bytecode-Verification.html
title Adobe Flash Player AVM Bytecode Verification
redhat via4
advisories
rhsa
id RHSA-2011:0372
refmap via4
bid 46860
cert-vn VU#192052
confirm
misc http://googlechromereleases.blogspot.com/2011/03/stable-and-beta-channel-updates_15.html
sectrack
  • 1025210
  • 1025211
  • 1025238
secunia
  • 43751
  • 43757
  • 43772
  • 43856
sreason 8152
suse SUSE-SR:2011:005
vupen
  • ADV-2011-0655
  • ADV-2011-0656
  • ADV-2011-0688
  • ADV-2011-0732
xf adobe-flash-authplay-ce(66078)
saint via4
bid 46860
description Adobe Reader Flash AVM2 Memory Corruption
id misc_flash
osvdb 71254
title adobe_reader_flash_avm2
type client
Last major update 11-02-2014 - 23:27
Published 15-03-2011 - 13:55
Last modified 30-10-2018 - 12:26
Back to Top