PT-2010-2000 · Adobe · Reader+3

Michael Yong Park

Published

2010-02-15

Updated

2018-10-30

CVE-2010-0186

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Adobe Flash Player versions prior to 10.0.45.2 Adobe AIR versions prior to 1.5.3.9130 Adobe Reader and Acrobat versions 8.x prior to 8.2.1 Adobe Reader and Acrobat versions 9.x prior to 9.3.1

Description A cross-domain issue allows remote attackers to bypass intended sandbox restrictions and make cross-domain requests.

Recommendations For Adobe Flash Player versions prior to 10.0.45.2, update to version 10.0.45.2 or later. For Adobe AIR versions prior to 1.5.3.9130, update to version 1.5.3.9130 or later. For Adobe Reader and Acrobat versions 8.x prior to 8.2.1, update to version 8.2.1 or later. For Adobe Reader and Acrobat versions 9.x prior to 9.3.1, update to version 9.3.1 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2010-0186

RHSA-2010:0102

RHSA-2010:0103

RHSA-2010:0114

Affected Products

Air

Acrobat

Flash Player

Reader

PT-2010-2000 · Adobe · Reader+3

CVE-2010-0186

Related Identifiers

Affected Products

References · 23