CVE-2010-0187medium
New! CVE Severity Now Using CVSS v3
The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Description
Adobe Flash Player before 10.0.45.2 and Adobe AIR before 1.5.3.9130 allow remote attackers to cause a denial of service (application crash) via a modified SWF file.
References
http://lists.apple.com/archives/security-announce/2010//Jun/msg00001.html
http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00004.html
http://sebug.net/exploit/18967/
http://secunia.com/advisories/38547
http://secunia.com/advisories/38915
http://secunia.com/advisories/40220
http://secunia.com/advisories/43026
http://security.gentoo.org/glsa/glsa-201101-09.xml
http://securitytracker.com/id?1023585
http://support.apple.com/kb/HT4188
http://www.adobe.com/support/security/bulletins/apsb10-06.html
http://www.exploit-db.com/exploits/11182
http://www.securityfocus.com/bid/38200
http://www.vupen.com/english/advisories/2010/1481
http://www.vupen.com/english/advisories/2011/0192
https://bugzilla.redhat.com/show_bug.cgi?id=564287
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16125
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8393
Vulnerable Software
Configuration 1
OR
cpe:2.3:a:adobe:adobe_air:1.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:1.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:1.5.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:1.5.2:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:1.5.3:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:*:*:*:*:*:*:*:* versions up to 1.5.3.9120 (inclusive)
cpe:2.3:a:adobe:flash_player:6.0.21.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:6.0.79:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:7.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:7.0.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:7.0.25:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:7.0.63:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:7.0.69.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:7.0.70.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:7.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:7.1.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:7.2:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:8.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:8.0.22.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:8.0.24.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:8.0.33.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:8.0.34.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:8.0.35.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:8.0.39.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:8.0.42.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.16:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.18d60:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.20:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.20.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.28.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.31:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.31.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.45.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.47.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.48.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.112.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.114.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.115.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.124.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.125.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.151.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.152.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.159.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.246.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.260.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.125.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.0.12.10:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.0.12.36:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.0.15.3:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.0.22.87:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.0.32.18:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:* versions up to 10.0.42.34 (inclusive)
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 63917 | RHEL 5 : flash-plugin (RHSA-2010:0102) | Nessus | Red Hat Local Security Checks | medium |
| 51735 | SuSE 10 Security Update : flash-player (ZYPP Patch Number 6845) | Nessus | SuSE Local Security Checks | medium |
| 51734 | SuSE 10 Security Update : flash-player (ZYPP Patch Number 6844) | Nessus | SuSE Local Security Checks | medium |
| 51658 | GLSA-201101-09 : Adobe Flash Player: Multiple vulnerabilities | Nessus | Gentoo Local Security Checks | high |
| 800793 | Mac OS X 10.6 < 10.6.4 Multiple Vulnerabilities | Log Correlation Engine | Operating System Detection | high |
| 5571 | Mac OS X 10.6 < 10.6.4 Multiple Vulnerabilities | Nessus Network Monitor | Generic | critical |
| 47024 | Mac OS X Multiple Vulnerabilities (Security Update 2010-004) | Nessus | MacOS X Local Security Checks | high |
| 47023 | Mac OS X 10.6.x < 10.6.4 Multiple Vulnerabilities | Nessus | MacOS X Local Security Checks | high |
| 44639 | SuSE 11 Security Update : flash-player (SAT Patch Number 1977) | Nessus | SuSE Local Security Checks | medium |
| 44638 | openSUSE Security Update : flash-player (flash-player-1970) | Nessus | SuSE Local Security Checks | medium |
| 44637 | openSUSE Security Update : flash-player (flash-player-1970) | Nessus | SuSE Local Security Checks | medium |
| 44636 | openSUSE Security Update : flash-player (flash-player-1970) | Nessus | SuSE Local Security Checks | medium |
| 44602 | FreeBSD : linux-flashplugin -- multiple vulnerabilities (ff6519ad-18e5-11df-9bdd-001b2134ef46) | Nessus | FreeBSD Local Security Checks | medium |
| 5338 | Flash Player < 10.0.45.2 Multiple Vulnerabilities | Nessus Network Monitor | Web Clients | low |
| 44596 | Flash Player < 10.0.45.2 Multiple Vulnerabilities (APSB10-06) | Nessus | Windows | medium |
| 44595 | Adobe AIR < 1.5.3.9130 Multiple Vulnerabilities (APSB10-06) | Nessus | Windows | medium |