You are here

CVE-2010-2174

Vincent (CVE) Danen's picture
Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors, related to an "invalid pointer vulnerability" and the newfunction (0x44) operator, a different vulnerability than CVE-2010-2173.

Details Source

Mitre

Public Date

2010-06-10 00:00:00

Impact

Critical

Bugzilla

flash-plugin: multiple security flaws (APSB10-14)

Bugzilla ID

602 847

CVSS Status

verified

Base Score

6.80

Base Metrics

AV:N/AC:M/Au:N/C:P/I:P/A:P

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux AS version 3 Extras (flash-plugin) RHSA-2010:0470 2010-06-14
Red Hat Enterprise Linux Supplementary 5 (flash-plugin) RHSA-2010:0464 2010-06-11
Red Hat Enterprise Linux AS version 4 Extras (flash-plugin) RHSA-2010:0470 2010-06-14