CVSS: 9.3EPSS: 1%CPEs: 75EXPL: 0CVE-2011-0607 – flash-plugin: multiple code execution flaws (APSB11-02)
https://notcve.org/view.php?id=CVE-2011-0607
Adobe Flash Player before 10.2.152.26 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-0559, CVE-2011-0560, CVE-2011-0561, CVE-2011-0571, CVE-2011-0572, CVE-2011-0573, CVE-2011-0574, CVE-2011-0578, and CVE-2011-0608. Adobe Flash Player anterior a v10.2.152.26 permite a los atacantes ejecutar código de su elección o causar una denegación de servicio (corrupción de memoria) a través de vectores no especificados, una vulnerabilidad diferente de CVE-2011-0559, CVE-2011-0560, CVE-2011-0561, CVE-2.011-0571, CVE-2011-0572, CVE-2011-0573, CVE-2011-0574, CVE-2011-0578, y CVE-2011-0608. • http://blogs.sun.com/security/entry/multiple_vulnerabilities_in_adobe_flash2 http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00003.html http://osvdb.org/70922 http://secunia.com/advisories/43267 http://secunia.com/advisories/43292 http://secunia.com/advisories/43340 http://secunia.com/advisories/43351 http://secunia.com/advisories/43747 http://www.adobe.com/support/security/bulletins/apsb11-02.html http://www.redhat.com/support/errata/RHSA-2011-0206.html http:/&# • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 13%CPEs: 75EXPL: 0CVE-2011-0577 – flash-plugin: multiple code execution flaws (APSB11-02)
https://notcve.org/view.php?id=CVE-2011-0577
Unspecified vulnerability in Adobe Flash Player before 10.2.152.26 allows remote attackers to execute arbitrary code via a crafted font. Vulnerabilidad no especificada en Adobe Flash Player antes de v10.2.152.26 permite a atacantes remotos ejecutar código arbitrario a través de una fuente manipulada. • http://blogs.sun.com/security/entry/multiple_vulnerabilities_in_adobe_flash2 http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00003.html http://osvdb.org/70920 http://secunia.com/advisories/43267 http://secunia.com/advisories/43292 http://secunia.com/advisories/43340 http://secunia.com/advisories/43351 http://secunia.com/advisories/43747 http://www.adobe.com/support/security/bulletins/apsb11-02.html http://www.redhat.com/support/errata/RHSA-2011-0206.html http:/&# •
CVSS: 9.3EPSS: 1%CPEs: 75EXPL: 0CVE-2011-0559 – flash-plugin: multiple code execution flaws (APSB11-02)
https://notcve.org/view.php?id=CVE-2011-0559
Adobe Flash Player before 10.2.152.26 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted parameters to an unspecified ActionScript method that cause a parameter to be used as an object pointer, a different vulnerability than CVE-2011-0560, CVE-2011-0561, CVE-2011-0571, CVE-2011-0572, CVE-2011-0573, CVE-2011-0574, CVE-2011-0578, CVE-2011-0607, and CVE-2011-0608. Adobe Flash Player anterior a v10.2.152.26, permite a atacantes remotos ejecutar código de su elección o provocar una denegación de servicio (corrupción de memoria) a través de vectores sin especificar. Vulnerabilidad distinta de CVE-2011-0560, CVE-2011-0561, CVE-2011-0571, CVE-2011-0572, CVE-2011-0573, CVE-2011-0574, CVE-2011-0578, CVE-2011-0607, y CVE-2011-0608. • http://blogs.sun.com/security/entry/multiple_vulnerabilities_in_adobe_flash2 http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=894 http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00003.html http://secunia.com/advisories/43267 http://secunia.com/advisories/43292 http://secunia.com/advisories/43340 http://secunia.com/advisories/43351 http://secunia.com/advisories/43747 http://www.adobe.com/support/security/bulletins/apsb11-02.html http://www.redhat.com/su • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 1%CPEs: 75EXPL: 0CVE-2011-0558 – flash-plugin: multiple code execution flaws (APSB11-02)
https://notcve.org/view.php?id=CVE-2011-0558
Integer overflow in Adobe Flash Player before 10.2.152.26 allows attackers to execute arbitrary code via a large array length value in the ActionScript method of the Function class. El desbordamiento de enteros en Adobe Flash Player anterior a versión 10.2.152.26 permite a los atacantes ejecutar código arbitrario por medio de un valor de longitud de matriz grande en el método ActionScript de la clase Function. • http://blogs.sun.com/security/entry/multiple_vulnerabilities_in_adobe_flash2 http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=893 http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00003.html http://secunia.com/advisories/43267 http://secunia.com/advisories/43292 http://secunia.com/advisories/43340 http://secunia.com/advisories/43351 http://secunia.com/advisories/43747 http://www.adobe.com/support/security/bulletins/apsb11-02.html http://www.redhat.com/su • CWE-189: Numeric Errors •
CVSS: 9.3EPSS: 1%CPEs: 75EXPL: 0CVE-2011-0578 – Adobe Flash Player Point Object Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2011-0578
Adobe Flash Player before 10.2.152.26 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors related to a constructor for an unspecified ActionScript3 object and improper type checking, a different vulnerability than CVE-2011-0559, CVE-2011-0560, CVE-2011-0561, CVE-2011-0571, CVE-2011-0572, CVE-2011-0573, CVE-2011-0574, CVE-2011-0607, and CVE-2011-0608. Adobe Flash Player anterior a v10.2.152.26, permite a atacantes remotos ejecutar código de su elección o provocar una denegación de servicio (corrupción de memoria) a través de vectores sin especificar. Vulnerabilidad distinta de CVE-2011-0559, CVE-2011-0560, CVE-2011-0561, CVE-2011-0571, CVE-2011-0572, CVE-2011-0573, CVE-2011-0574, CVE-2011-0607, y CVE-2011-0608. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within construction of a specific ActionScript3 object. • http://blogs.sun.com/security/entry/multiple_vulnerabilities_in_adobe_flash2 http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00003.html http://osvdb.org/70921 http://secunia.com/advisories/43267 http://secunia.com/advisories/43292 http://secunia.com/advisories/43340 http://secunia.com/advisories/43351 http://secunia.com/advisories/43747 http://www.adobe.com/support/security/bulletins/apsb11-02.html http://www.redhat.com/support/errata/RHSA-2011-0206.html http:/&# • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •