PT-2010-3771 · Adobe · Flash Player+1
Damian Put
·
Publicado
2010-06-15
·
Atualizado
2018-10-30
·
CVE-2010-2162
CVSS v2.0
9.3
Alta
| Vetor | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Adobe Flash Player versions prior to 9.0.277.0
Adobe Flash Player versions 10.x prior to 10.1.53.64
Adobe AIR versions prior to 2.0.2.12610
Description
The issue allows attackers to cause a denial of service or possibly execute arbitrary code via vectors related to improper length calculation and the atoms, including the (1) STSC, (2) STSZ, and (3) STCO atoms. This can lead to heap memory corruption.
Recommendations
For Adobe Flash Player versions prior to 9.0.277.0, update to version 9.0.277.0 or later.
For Adobe Flash Player versions 10.x prior to 10.1.53.64, update to version 10.1.53.64 or later.
For Adobe AIR versions prior to 2.0.2.12610, update to version 2.0.2.12610 or later.
Correção
DoS
Buffer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Air
Flash Player