Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2011-2426

Опубликовано: 22 сент. 2011
Источник: nvd
CVSS2: 9.3
EPSS Средний

Уязвимость выполнения произвольного кода через переполнение буфера в компоненте ActionScript Virtual Machine в Adobe Flash Player

Описание

В компоненте ActionScript Virtual Machine (AVM) программы Adobe Flash Player существует уязвимость, связанная с переполнением буфера. Эта уязвимость позволяет злоумышленникам удалённо выполнять произвольный код, что может привести к компрометации системы. Вектор атаки не раскрыт.

Затронутые версии ПО

  • Adobe Flash Player до версии 10.3.183.10 на Windows, Mac OS X, Linux и Solaris.
  • Adobe Flash Player до версии 10.3.186.7 на Android.

Тип уязвимости

Удалённое выполнение кода

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*
Версия до 10.3.183.7 (включая)
cpe:2.3:a:adobe:flash_player:6.0.21.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:6.0.79:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:7.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:7.0.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:7.0.14.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:7.0.19.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:7.0.24.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:7.0.25:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:7.0.53.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:7.0.60.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:7.0.61.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:7.0.63:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:7.0.66.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:7.0.67.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:7.0.68.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:7.0.69.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:7.0.70.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:7.0.73.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:7.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:7.1.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:7.2:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:8.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:8.0.22.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:8.0.24.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:8.0.33.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:8.0.34.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:8.0.35.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:8.0.39.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:8.0.42.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.16:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.18d60:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.20:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.20.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.28:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.28.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.31:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.31.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.45.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.47.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.48.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.112.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.114.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.115.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.124.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.125.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.151.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.152.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.155.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.159.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.246.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.260.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.262.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.277.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.0.283.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:9.125.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.0.0.584:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.0.12.10:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.0.12.36:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.0.15.3:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.0.22.87:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.0.32.18:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.0.42.34:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.0.45.2:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.1.52.14.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.1.52.15:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.1.53.64:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.1.82.76:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.1.85.3:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.1.92.8:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.1.92.10:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.1.95.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.1.95.2:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.1.102.64:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.2.152:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.2.152.32:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.2.152.33:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.2.154.13:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.2.154.25:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.2.159.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.181.14:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.181.16:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.181.23:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.181.34:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.181.36:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.183.5:*:*:*:*:*:*:*

Одно из

cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
cpe:2.3:o:sun:sunos:*:*:*:*:*:*:*:*
Конфигурация 2

Одновременно

Одно из

cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*
Версия до 10.3.186.6 (включая)
cpe:2.3:a:adobe:flash_player:10.1.92.8:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.1.92.10:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.1.95.2:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.1.105.6:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.1.106.16:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.2.156.12:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.2.157.51:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.185.21:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.185.23:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.185.25:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.186.3:*:*:*:*:*:*:*
cpe:2.3:o:google:android:*:*:*:*:*:*:*:*

EPSS

Процентиль: 93%
0.11685
Средний

9.3 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

ubuntu логотип

CVE-2011-2426

ubuntu
больше 14 лет назад

Stack-based buffer overflow in the ActionScript Virtual Machine (AVM) component in Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186.7 on Android, allows remote attackers to execute arbitrary code via unspecified vectors.

redhat логотип

CVE-2011-2426

redhat
больше 14 лет назад

Stack-based buffer overflow in the ActionScript Virtual Machine (AVM) component in Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186.7 on Android, allows remote attackers to execute arbitrary code via unspecified vectors.

github логотип

GHSA-pc48-33pf-32pp

github
больше 3 лет назад

Stack-based buffer overflow in the ActionScript Virtual Machine (AVM) component in Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186.7 on Android, allows remote attackers to execute arbitrary code via unspecified vectors.

EPSS

Процентиль: 93%
0.11685
Средний

9.3 Critical

CVSS2

Дефекты

CWE-119