PT-2011-2509 · Adobe+1 · Flash Player+1

Publicado

2011-05-13

·

Atualizado

2018-10-30

·

CVE-2011-0628

CVSS v2.0

9.3

Alta

VetorAV:N/AC:M/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Adobe Flash Player versions prior to 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris Adobe Flash Player versions prior to 10.3.185.21 on Android
Description The issue is related to an integer overflow in Adobe Flash Player, allowing remote attackers to execute arbitrary code via ActionScript that improperly handles a long array object.
Recommendations For Adobe Flash Player versions prior to 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris, update to version 10.3.181.14 or later. For Adobe Flash Player versions prior to 10.3.185.21 on Android, update to version 10.3.185.21 or later.

Correção

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-189

Identificadores relacionados

CVE-2011-0628
RHSA-2011:0511
RHSA-2011_0511

Produtos afetados

Flash Player
Red Hat