CVE-2010-3640

HIGH

Description

Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652.

References

http://blogs.sun.com/security/entry/multiple_vulnerabilities_in_adobe_flash1

http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html

http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00002.html

http://marc.info/?l=bugtraq&m=130331642631603&w=2

http://secunia.com/advisories/42183

http://secunia.com/advisories/42926

http://secunia.com/advisories/43026

http://security.gentoo.org/glsa/glsa-201101-09.xml

http://support.apple.com/kb/HT4435

http://www.adobe.com/support/security/bulletins/apsb10-26.html

http://www.redhat.com/support/errata/RHSA-2010-0829.html

http://www.redhat.com/support/errata/RHSA-2010-0834.html

http://www.redhat.com/support/errata/RHSA-2010-0867.html

http://www.securityfocus.com/bid/44675

http://www.vupen.com/english/advisories/2010/2903

http://www.vupen.com/english/advisories/2010/2906

http://www.vupen.com/english/advisories/2010/2918

http://www.vupen.com/english/advisories/2011/0173

http://www.vupen.com/english/advisories/2011/0192

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12179

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16281

Details

Source: MITRE

Published: 2010-11-07

Updated: 2019-10-09

Type: NVD-CWE-noinfo

Risk Information

CVSS v2.0

Base Score: 9.3

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 8.6

Severity: HIGH

Tenable Plugins

View all (18 total)

ID	Name	Product	Family	Severity
75493	openSUSE Security Update : flash-player (flash-player-3474)	Nessus	SuSE Local Security Checks	high
63957	RHEL 4 : flash-plugin (RHSA-2010:0834)	Nessus	Red Hat Local Security Checks	high
63956	RHEL 5 : flash-plugin (RHSA-2010:0829)	Nessus	Red Hat Local Security Checks	high
53718	openSUSE Security Update : flash-player (flash-player-3474)	Nessus	SuSE Local Security Checks	high
53658	openSUSE Security Update : flash-player (flash-player-3474)	Nessus	SuSE Local Security Checks	high
51658	GLSA-201101-09 : Adobe Flash Player: Multiple vulnerabilities	Nessus	Gentoo Local Security Checks	high
50904	SuSE 11 / 11.1 Security Update : flash-player (SAT Patch Numbers 3475 / 3477)	Nessus	SuSE Local Security Checks	high
50639	RHEL 6 : flash-plugin (RHSA-2010:0867)	Nessus	Red Hat Local Security Checks	high
50614	Adobe Reader < 9.4.1 Multiple Vulnerabilities (APSB10-28)	Nessus	Windows	high
50613	Adobe Acrobat 9.x < 9.4.1 Multiple Vulnerabilities (APSB10-28)	Nessus	Windows	high
50604	Adobe AIR < 2.5.1 Multiple Vulnerabilities (APSB10-26)	Nessus	Windows	high
800791	Mac OS X 10.6 < 10.6.5 Multiple Vulnerabilities	Log Correlation Engine	Operating System Detection	high
5705	Mac OS X 10.6 < 10.6.5 Multiple Vulnerabilities	Nessus Network Monitor	Generic	critical
50549	Mac OS X Multiple Vulnerabilities (Security Update 2010-007)	Nessus	MacOS X Local Security Checks	high
50548	Mac OS X 10.6.x < 10.6.5 Multiple Vulnerabilities	Nessus	MacOS X Local Security Checks	critical
50505	FreeBSD : linux-flashplugin -- multiple vulnerabilities (76b597e4-e9c6-11df-9e10-001b2134ef46)	Nessus	FreeBSD Local Security Checks	high
50493	Flash Player < 9.0.289 / 10.1.102.64 Multiple Vulnerabilities (APSB10-26)	Nessus	Windows	high
5699	Flash Player < 9.0.289 / 10.1.102.64 Multiple Vulnerabilities (APSB10-26)	Nessus Network Monitor	Web Clients	medium