CVSS: 9.3EPSS: 1%CPEs: 67EXPL: 0CVE-2010-2182 – flash-plugin: multiple security flaws (APSB10-14)
https://notcve.org/view.php?id=CVE-2010-2182
15 Jun 2010 — Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166, CVE-2010-2171, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2180, CVE-2010-2184, CVE-2010-2187, and CVE-2010-2188. Adobe Flash Player anterior a v9.0.277.0 y v10.x anterior a v10.1.53.64, ... • http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 1%CPEs: 67EXPL: 0CVE-2010-2164 – flash-plugin: multiple security flaws (APSB10-14)
https://notcve.org/view.php?id=CVE-2010-2164
15 Jun 2010 — Use-after-free vulnerability in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors related to an unspecified "image type within a certain function." Una vulnerabilidad de uso de memoria previamente liberada en Adobe Flash Player anterior a versión 9.0.277.0 y versión 10.x anterior a 10.1.53.64, y Adobe AIR anterior a versión 2.0.2.12610, podría permitir a los atacantes ejecutar código arbit... • http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751 • CWE-399: Resource Management Errors •
CVSS: 9.3EPSS: 1%CPEs: 67EXPL: 0CVE-2010-2184 – flash-plugin: multiple security flaws (APSB10-14)
https://notcve.org/view.php?id=CVE-2010-2184
15 Jun 2010 — Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166, CVE-2010-2171, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2180, CVE-2010-2182, CVE-2010-2187, and CVE-2010-2188. Adobe Flash Player anterior a v9.0.277.0 y v10.x anterior a v10.1.53.64, ... • http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.8EPSS: 0%CPEs: 7EXPL: 0CVE-2010-2179 – flash-plugin: multiple security flaws (APSB10-14)
https://notcve.org/view.php?id=CVE-2010-2179
15 Jun 2010 — Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, when Firefox or Chrome is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to URL parsing. Vulnerabilidad de ejecución de secuencias de comandos en sitios cruzados (XSS) en Adobe Flash Player anterior a v9.0.277.0 y v10.x anterior a v10.1.53.64, y Adobe Air anterior a v2.0.2.12610, cuando se usa FireFox o Chrome perm... • http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.8EPSS: 1%CPEs: 67EXPL: 0CVE-2009-3793 – flash-plugin: multiple security flaws (APSB10-14)
https://notcve.org/view.php?id=CVE-2009-3793
15 Jun 2010 — Unspecified vulnerability in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory consumption) or possibly execute arbitrary code via unknown vectors. Vulnerabilidad no especificada en Adobe Flash Player anterior a v9.0.277.0 y v10.x anterior a v10.1.53.64, y Adobe AIR anterior a v2.0.2.12610, permite a los atacantes provocar una denegación de servicio (consumo de memoria) o puede que ejecutar código de su ele... • http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751 • CWE-399: Resource Management Errors •
CVSS: 9.3EPSS: 1%CPEs: 67EXPL: 0CVE-2010-2176 – flash-plugin: multiple security flaws (APSB10-14)
https://notcve.org/view.php?id=CVE-2010-2176
15 Jun 2010 — Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-2160, CVE-2010-2165, CVE-2010-2166, CVE-2010-2171, CVE-2010-2175, CVE-2010-2177, CVE-2010-2178, CVE-2010-2180, CVE-2010-2182, CVE-2010-2184, CVE-2010-2187, and CVE-2010-2188. Adobe Flash Player anterior a v9.0.277.0 y v10.x anterior a v10.1.53.64, ... • http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 87%CPEs: 11EXPL: 6CVE-2010-1297 – Adobe Flash Player Memory Corruption Vulnerability
https://notcve.org/view.php?id=CVE-2010-1297
08 Jun 2010 — Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64; Adobe AIR before 2.0.2.12610; and Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Windows and Mac OS X, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted SWF content, related to authplay.dll and the ActionScript Virtual Machine 2 (AVM2) newfunction instruction, as exploited in the wild in June 2010. Vulnerabilidad sin especificar en Adobe Flash Player v9.0.x a v9.0.2... • https://www.exploit-db.com/exploits/13787 • CWE-787: Out-of-bounds Write •
CVSS: 6.5EPSS: 82%CPEs: 53EXPL: 2CVE-2010-0187 – Microsoft Internet Explorer 6/7/8 - Shockwave Flash Object Denial of Service
https://notcve.org/view.php?id=CVE-2010-0187
15 Feb 2010 — Adobe Flash Player before 10.0.45.2 and Adobe AIR before 1.5.3.9130 allow remote attackers to cause a denial of service (application crash) via a modified SWF file. Adobe Flash Player en versiones anteriores a la v10.0.45.2 y Adobe AIR en versiones anteriores a la v1.5.3.9130 permite a atacantes remotos provocar una denegación de servicio (caída de la aplicación) a través de un fichero SWF modificado. • https://www.exploit-db.com/exploits/11182 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 9.3EPSS: 2%CPEs: 84EXPL: 0CVE-2010-0186 – flash-plugin: unauthorized cross-domain requests (APSB10-06)
https://notcve.org/view.php?id=CVE-2010-0186
15 Feb 2010 — Cross-domain vulnerability in Adobe Flash Player before 10.0.45.2, Adobe AIR before 1.5.3.9130, and Adobe Reader and Acrobat 8.x before 8.2.1 and 9.x before 9.3.1 allows remote attackers to bypass intended sandbox restrictions and make cross-domain requests via unspecified vectors. Vulnerabilidad de tipo cross-domain en Adobe Flash Player anterior a versión 10.0.45.2, Adobe AIR anterior a 1.5.3.9130 y Adobe Reader y Acrobat 8.x anterior al 8.2.1 y 9.x anterior al 9.3.1 permite a los atacantes remotos omitir... • http://lists.apple.com/archives/security-announce/2010//Jun/msg00001.html •
CVSS: 9.8EPSS: 1%CPEs: 46EXPL: 0CVE-2009-3798 – flash-plugin: multiple code execution flaws (APSB09-19) (CVE-2009-3794, CVE-2009-3796, CVE-2009-3797, CVE-2009-3798, CVE-2009-3799, CVE-2009-3800)
https://notcve.org/view.php?id=CVE-2009-3798
10 Dec 2009 — Adobe Flash Player before 10.0.42.34 and Adobe AIR before 1.5.3 might allow attackers to execute arbitrary code via unspecified vectors that trigger memory corruption. Adobe Flash Player anteriores a v10.0.42.34 y Adobe AIR anteriores a v1.5.3 podría permitir a atacantes ejecutar código a través de vectores sin especificar que inician una corrupción de memoria. • http://lists.apple.com/archives/security-announce/2010/Jan/msg00000.html • CWE-399: Resource Management Errors •