Red Hat Customer Portal

Skip to main content

CVE-2010-2179

Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, when Firefox or Chrome is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to URL parsing.

Details Source

Mitre

Public Date

2010-06-10 00:00:00

Impact

Critical

Bugzilla

flash-plugin: multiple security flaws (APSB10-14)

Bugzilla ID

602 847

CVSS Status

verified

Base Score

6.80

Base Metrics

AV:N/AC:M/Au:N/C:P/I:P/A:P

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux AS version 3 Extras (flash-plugin) RHSA-2010:0470 2010-06-14
Red Hat Enterprise Linux Supplementary 5 (flash-plugin) RHSA-2010:0464 2010-06-11
Red Hat Enterprise Linux AS version 4 Extras (flash-plugin) RHSA-2010:0470 2010-06-14