You are here

CVE-2010-2160

Vincent (CVE) Danen's picture
Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via an invalid offset in an unspecified undocumented opcode in ActionScript Virtual Machine 2, related to getouterscope, a different vulnerability than CVE-2010-2165, CVE-2010-2166, CVE-2010-2171, CVE-2010-2175, CVE-2010-2176, CVE-2010-2177, CVE-2010-2178, CVE-2010-2180, CVE-2010-2182, CVE-2010-2184, CVE-2010-2187, and CVE-2010-2188.

Details Source

Mitre

Public Date

2010-06-10 00:00:00

Impact

Critical

Bugzilla

flash-plugin: multiple security flaws (APSB10-14)

Bugzilla ID

602 847

CVSS Status

verified

Base Score

6.80

Base Metrics

AV:N/AC:M/Au:N/C:P/I:P/A:P

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux AS version 3 Extras (flash-plugin) RHSA-2010:0470 2010-06-14
Red Hat Enterprise Linux Supplementary 5 (flash-plugin) RHSA-2010:0464 2010-06-11
Red Hat Enterprise Linux AS version 4 Extras (flash-plugin) RHSA-2010:0470 2010-06-14