CVE-2011-0609

 

Published at: - 15-03-2011 06:55

Last modified: - 23-01-2023 07:44

Total changes: - 9

Description

Unspecified vulnerability in Adobe Flash Player 10.2.154.13 and earlier on Windows, Mac OS X, Linux, and Solaris; 10.1.106.16 and earlier on Android; Adobe AIR 2.5.1 and earlier; and Authplay.dll (aka AuthPlayLib.bundle) in Adobe Reader and Acrobat 9.x through 9.4.2 and 10.x through 10.0.1 on Windows and Mac OS X, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted Flash content, as demonstrated by a .swf file embedded in an Excel spreadsheet, and as exploited in the wild in March 2011.

Common Vulnerability Scoring System (CVSS)

AV:N/AC:M/Au:N/C:C/I:C/A:C

 

Verification logic

 

Reference

• http://www.adobe.com/support/security/advisories/apsa11-01.html
• http://blogs.adobe.com/asset/2011/03/background-on-apsa11-01-patch-schedule.html
• 46860-
• 1025211-
• http://googlechromereleases.blogspot.com/2011/03/stable-and-beta-channel-updates_15.html
• ADV-2011-0655-
• 1025210-
• VU#192052-US Government Resource
• ADV-2011-0732-
• RHSA-2011:0372-
• ADV-2011-0656-
• ADV-2011-0688-
• http://www.adobe.com/support/security/bulletins/apsb11-06.html
• 1025238-
• 8152-
• 43757-
• 43751-
• 43772-
• 43856-
• SUSE-SR:2011:005-
• adobe-flash-authplay-ce(66078)-
• oval:org.mitre.oval:def:14147-

 

Keywords

NVD

 

CVE-2011-0609

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures