Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2010-3636

Опубликовано: 07 нояб. 2010
Источник: ubuntu
Приоритет: medium
CVSS2: 9.3

Описание

Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, does not properly handle unspecified encodings during the parsing of a cross-domain policy file, which allows remote web servers to bypass intended access restrictions via unknown vectors.

РелизСтатусПримечание
dapper

DNE

devel

DNE

hardy

released

10.1.102.64-1
karmic

released

10.1.102.64-1karmic1
lucid

released

10.1.102.64-1lucid1
maverick

released

10.1.102.64-1maverick1
upstream

released

10.1.102.64

Показывать по

РелизСтатусПримечание
dapper

ignored

end of life
devel

released

10.1.102.64ubuntu1
hardy

released

10.0.1.218+really9.0.289.0ubuntu1
karmic

released

10.1.102.64ubuntu0.9.10.1
lucid

released

10.1.102.64ubuntu0.10.04.1
maverick

released

10.1.102.64ubuntu0.10.10.1
upstream

released

10.1.102.64

Показывать по

Ссылки на источники

9.3 Critical

CVSS2

Связанные уязвимости

redhat логотип

CVE-2010-3636

redhat
больше 15 лет назад

Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, does not properly handle unspecified encodings during the parsing of a cross-domain policy file, which allows remote web servers to bypass intended access restrictions via unknown vectors.

nvd логотип

CVE-2010-3636

nvd
около 15 лет назад

Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, does not properly handle unspecified encodings during the parsing of a cross-domain policy file, which allows remote web servers to bypass intended access restrictions via unknown vectors.

github логотип

GHSA-r3hm-9frm-fwcf

github
больше 3 лет назад

Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, does not properly handle unspecified encodings during the parsing of a cross-domain policy file, which allows remote web servers to bypass intended access restrictions via unknown vectors.

9.3 Critical

CVSS2