← Voltar para CVEs

CVE-2011-0609

HIGHCISA KEV

7.8

Descricao

Unspecified vulnerability in Adobe Flash Player 10.2.154.13 and earlier on Windows, Mac OS X, Linux, and Solaris; 10.1.106.16 and earlier on Android; Adobe AIR 2.5.1 and earlier; and Authplay.dll (aka AuthPlayLib.bundle) in Adobe Reader and Acrobat 9.x through 9.4.2 and 10.x through 10.0.1 on Windows and Mac OS X, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted Flash content, as demonstrated by a .swf file embedded in an Excel spreadsheet, and as exploited in the wild in March 2011.

Detalhes CVE

Pontuacao CVSS v3.17.8

SeveridadeHIGH

Vetor CVSSCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Vetor de ataqueLOCAL

ComplexidadeLOW

Privilegios necessariosNONE

Interacao do usuarioREQUIRED

Publicado3/15/2011

Ultima modificacao4/21/2026

Fontekev

Avistamentos honeypot0

CISA KEV

FornecedorAdobe

ProdutoFlash Player

Nome da vulnerabilidadeAdobe Flash Player Unspecified Vulnerability

Data inclusao KEV2022-06-08

Prazo de remediacao2022-06-22

Uso em ransomwareUnknown

Produtos afetados

adobe:acrobatadobe:acrobat_readeradobe:airadobe:flash_playerapple:mac_os_xapple:macosgoogle:androidgoogle:chromegoogle:chrome_oslinux:linux_kernelmicrosoft:windowsopensuse:opensuseoracle:solarissuse:linux_enterprise

Referencias

http://blogs.adobe.com/asset/2011/03/background-on-apsa11-01-patch-schedule.html(psirt@adobe.com)

http://googlechromereleases.blogspot.com/2011/03/stable-and-beta-channel-updates_15.html(psirt@adobe.com)

http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html(psirt@adobe.com)

http://secunia.com/advisories/43751(psirt@adobe.com)

http://secunia.com/advisories/43757(psirt@adobe.com)

http://secunia.com/advisories/43772(psirt@adobe.com)

http://secunia.com/advisories/43856(psirt@adobe.com)

http://securityreason.com/securityalert/8152(psirt@adobe.com)

http://www.adobe.com/support/security/advisories/apsa11-01.html(psirt@adobe.com)

http://www.adobe.com/support/security/bulletins/apsb11-06.html(psirt@adobe.com)

http://www.kb.cert.org/vuls/id/192052(psirt@adobe.com)

http://www.redhat.com/support/errata/RHSA-2011-0372.html(psirt@adobe.com)

http://www.securityfocus.com/bid/46860(psirt@adobe.com)

http://www.securitytracker.com/id?1025210(psirt@adobe.com)

http://www.securitytracker.com/id?1025211(psirt@adobe.com)

http://www.securitytracker.com/id?1025238(psirt@adobe.com)

http://www.vupen.com/english/advisories/2011/0655(psirt@adobe.com)

http://www.vupen.com/english/advisories/2011/0656(psirt@adobe.com)

http://www.vupen.com/english/advisories/2011/0688(psirt@adobe.com)

http://www.vupen.com/english/advisories/2011/0732(psirt@adobe.com)

https://exchange.xforce.ibmcloud.com/vulnerabilities/66078(psirt@adobe.com)

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14147(psirt@adobe.com)

http://blogs.adobe.com/asset/2011/03/background-on-apsa11-01-patch-schedule.html(af854a3a-2127-422b-91ae-364da2661108)

http://googlechromereleases.blogspot.com/2011/03/stable-and-beta-channel-updates_15.html(af854a3a-2127-422b-91ae-364da2661108)

http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/43751(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/43757(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/43772(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/43856(af854a3a-2127-422b-91ae-364da2661108)

http://securityreason.com/securityalert/8152(af854a3a-2127-422b-91ae-364da2661108)

http://www.adobe.com/support/security/advisories/apsa11-01.html(af854a3a-2127-422b-91ae-364da2661108)

http://www.adobe.com/support/security/bulletins/apsb11-06.html(af854a3a-2127-422b-91ae-364da2661108)

http://www.kb.cert.org/vuls/id/192052(af854a3a-2127-422b-91ae-364da2661108)

http://www.redhat.com/support/errata/RHSA-2011-0372.html(af854a3a-2127-422b-91ae-364da2661108)

http://www.securityfocus.com/bid/46860(af854a3a-2127-422b-91ae-364da2661108)

http://www.securitytracker.com/id?1025210(af854a3a-2127-422b-91ae-364da2661108)

http://www.securitytracker.com/id?1025211(af854a3a-2127-422b-91ae-364da2661108)

http://www.securitytracker.com/id?1025238(af854a3a-2127-422b-91ae-364da2661108)

http://www.vupen.com/english/advisories/2011/0655(af854a3a-2127-422b-91ae-364da2661108)

http://www.vupen.com/english/advisories/2011/0656(af854a3a-2127-422b-91ae-364da2661108)

http://www.vupen.com/english/advisories/2011/0688(af854a3a-2127-422b-91ae-364da2661108)

http://www.vupen.com/english/advisories/2011/0732(af854a3a-2127-422b-91ae-364da2661108)

https://exchange.xforce.ibmcloud.com/vulnerabilities/66078(af854a3a-2127-422b-91ae-364da2661108)

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14147(af854a3a-2127-422b-91ae-364da2661108)

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2011-0609(134c704f-9b21-4f2e-91b3-4a467353bcc0)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.