ID

VAR-201109-0141


CVE

CVE-2011-2429


TITLE

Adobe Flash Player Vulnerable to access restrictions

Trust: 0.8

sources: JVNDB: JVNDB-2011-002262

DESCRIPTION

Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186.7 on Android, allows attackers to bypass intended access restrictions and obtain sensitive information via unspecified vectors, related to a "security control bypass.". Adobe Flash Player is prone to a remote information-disclosure vulnerability. An attacker can exploit this issue to retrieve potentially sensitive information. Information obtained may aid in further attacks. The product enables viewing of applications, content and video across screens and browsers. ---------------------------------------------------------------------- Ovum says ad hoc tools are out-dated. The best practice approach? Fast vulnerability intelligence, threat handling, and setup in one tool. Read the new report on the Secunia VIM: http://secunia.com/products/corporate/vim/ovum_2011_request/ ---------------------------------------------------------------------- TITLE: Adobe Flash Player Multiple Vulnerabilities SECUNIA ADVISORY ID: SA46113 VERIFY ADVISORY: Secunia.com http://secunia.com/advisories/46113/ Customer Area (Credentials Required) https://ca.secunia.com/?page=viewadvisory&vuln_id=46113 RELEASE DATE: 2011-09-22 DISCUSS ADVISORY: http://secunia.com/advisories/46113/#comments AVAILABLE ON SITE AND IN CUSTOMER AREA: * Last Update * Popularity * Comments * Criticality Level * Impact * Where * Solution Status * Operating System / Software * CVE Reference(s) http://secunia.com/advisories/46113/ ONLY AVAILABLE IN CUSTOMER AREA: * Authentication Level * Report Reliability * Secunia PoC * Secunia Analysis * Systems Affected * Approve Distribution * Remediation Status * Secunia CVSS Score * CVSS https://ca.secunia.com/?page=viewadvisory&vuln_id=46113 ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI: * AUTOMATED SCANNING http://secunia.com/vulnerability_scanning/personal/ http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/ DESCRIPTION: Multiple vulnerabilities have been reported in Adobe Flash Player, which can be exploited by malicious people to conduct cross-site scripting attacks, bypass certain security restrictions, and compromise a user's system. 1) Certain unspecified input is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site. NOTE: This vulnerability is reportedly being actively exploited in targeted attacks. 2) An error within the ActionScript Virtual Machine 2 (AVM2) when handling a certain function parameters can be exploited to cause a stack-based buffer overflow. 3) An error within the ActionScript Virtual Machine (AVM) can be exploited to cause a stack-based buffer overflow. 4) A logic error can be exploited to corrupt memory. 5) An unspecified error can be exploited to bypass the security control and e.g. 6) A logic error when streaming certain media can be exploited to corrupt memory. SOLUTION: Update to a fixed version. Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ PROVIDED AND/OR DISCOVERED BY: 1) Reported as a 0-day. The vendor additionally credits Google. 2) Bing Liu, Fortinet's FortiGuard Labs. The vendor credits: 3) Yang Dingning, NCNIPC, Graduate University of Chinese Academy of Sciences. 5) Neil Bergman, Cigital. 6) Zrong, zengrong.net. ORIGINAL ADVISORY: Adobe: http://www.adobe.com/support/security/bulletins/apsb11-26.html FortiGuard Labs: http://www.fortiguard.com/advisory/FGA-2011-32.html OTHER REFERENCES: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ DEEP LINKS: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ EXTENDED DESCRIPTION: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ EXTENDED SOLUTION: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ EXPLOIT: Further details available in Customer Area: http://secunia.com/vulnerability_intelligence/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/advisories/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ---------------------------------------------------------------------- . Description: The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. ---------------------------------------------------------------------- Become a PSI 3.0 beta tester! Test-drive the new beta version and tell us what you think about its extended automatic update function and significantly enhanced user-interface. Please see the vendor's advisory for more details. Background ========== The Adobe Flash Player is a renderer for the SWF file format, which is commonly used to provide interactive websites. Workaround ========== There is no known workaround at this time. Resolution ========== All Adobe Flash Player users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot -v ">=www-plugins/adobe-flash-10.3.183.10" References ========== [ 1 ] APSA11-01 http://www.adobe.com/support/security/advisories/apsa11-01.html [ 2 ] APSA11-02 http://www.adobe.com/support/security/advisories/apsa11-02.html [ 3 ] APSB11-02 http://www.adobe.com/support/security/bulletins/apsb11-02.html [ 4 ] APSB11-12 http://www.adobe.com/support/security/bulletins/apsb11-12.html [ 5 ] APSB11-13 http://www.adobe.com/support/security/bulletins/apsb11-13.html [ 6 ] APSB11-21 https://www.adobe.com/support/security/bulletins/apsb11-21.html [ 7 ] APSB11-26 https://www.adobe.com/support/security/bulletins/apsb11-26.html [ 8 ] CVE-2011-0558 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0558 [ 9 ] CVE-2011-0559 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0559 [ 10 ] CVE-2011-0560 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0560 [ 11 ] CVE-2011-0561 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0561 [ 12 ] CVE-2011-0571 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0571 [ 13 ] CVE-2011-0572 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0572 [ 14 ] CVE-2011-0573 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0573 [ 15 ] CVE-2011-0574 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0574 [ 16 ] CVE-2011-0575 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0575 [ 17 ] CVE-2011-0577 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0577 [ 18 ] CVE-2011-0578 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0578 [ 19 ] CVE-2011-0579 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0579 [ 20 ] CVE-2011-0589 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0589 [ 21 ] CVE-2011-0607 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0607 [ 22 ] CVE-2011-0608 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0608 [ 23 ] CVE-2011-0609 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0609 [ 24 ] CVE-2011-0611 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0611 [ 25 ] CVE-2011-0618 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0618 [ 26 ] CVE-2011-0619 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0619 [ 27 ] CVE-2011-0620 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0620 [ 28 ] CVE-2011-0621 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0621 [ 29 ] CVE-2011-0622 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0622 [ 30 ] CVE-2011-0623 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0623 [ 31 ] CVE-2011-0624 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0624 [ 32 ] CVE-2011-0625 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0625 [ 33 ] CVE-2011-0626 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0626 [ 34 ] CVE-2011-0627 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0627 [ 35 ] CVE-2011-0628 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0628 [ 36 ] CVE-2011-2107 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2107 [ 37 ] CVE-2011-2110 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2110 [ 38 ] CVE-2011-2125 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2135 [ 39 ] CVE-2011-2130 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2130 [ 40 ] CVE-2011-2134 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2134 [ 41 ] CVE-2011-2136 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2136 [ 42 ] CVE-2011-2137 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2137 [ 43 ] CVE-2011-2138 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2138 [ 44 ] CVE-2011-2139 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2139 [ 45 ] CVE-2011-2140 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2140 [ 46 ] CVE-2011-2414 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2414 [ 47 ] CVE-2011-2415 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2415 [ 48 ] CVE-2011-2416 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2416 [ 49 ] CVE-2011-2417 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2417 [ 50 ] CVE-2011-2424 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2424 [ 51 ] CVE-2011-2425 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2425 [ 52 ] CVE-2011-2426 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2426 [ 53 ] CVE-2011-2427 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2427 [ 54 ] CVE-2011-2428 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2428 [ 55 ] CVE-2011-2429 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2429 [ 56 ] CVE-2011-2430 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2430 [ 57 ] CVE-2011-2444 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2444 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-201110-11.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org. License ======= Copyright 2011 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5 . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ===================================================================== Red Hat Security Advisory Synopsis: Critical: acroread security update Advisory ID: RHSA-2011:1434-01 Product: Red Hat Enterprise Linux Extras Advisory URL: https://rhn.redhat.com/errata/RHSA-2011-1434.html Issue date: 2011-11-08 CVE Names: CVE-2011-2130 CVE-2011-2134 CVE-2011-2135 CVE-2011-2136 CVE-2011-2137 CVE-2011-2138 CVE-2011-2139 CVE-2011-2140 CVE-2011-2414 CVE-2011-2415 CVE-2011-2416 CVE-2011-2417 CVE-2011-2424 CVE-2011-2425 CVE-2011-2426 CVE-2011-2427 CVE-2011-2428 CVE-2011-2429 CVE-2011-2430 CVE-2011-2431 CVE-2011-2432 CVE-2011-2433 CVE-2011-2434 CVE-2011-2435 CVE-2011-2436 CVE-2011-2437 CVE-2011-2438 CVE-2011-2439 CVE-2011-2440 CVE-2011-2442 CVE-2011-2444 ===================================================================== 1. Summary: Updated acroread packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4 Extras and Red Hat Enterprise Linux 5 and 6 Supplementary. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: Red Hat Desktop version 4 Extras - i386, x86_64 Red Hat Enterprise Linux AS version 4 Extras - i386, x86_64 Red Hat Enterprise Linux Desktop Supplementary (v. 5) - i386, x86_64 Red Hat Enterprise Linux Desktop Supplementary (v. 6) - i386, x86_64 Red Hat Enterprise Linux ES version 4 Extras - i386, x86_64 Red Hat Enterprise Linux Server Supplementary (v. 5) - i386, x86_64 Red Hat Enterprise Linux Server Supplementary (v. 6) - i386, x86_64 Red Hat Enterprise Linux WS version 4 Extras - i386, x86_64 Red Hat Enterprise Linux Workstation Supplementary (v. 6) - i386, x86_64 3. Description: Adobe Reader allows users to view and print documents in Portable Document Format (PDF). This update fixes multiple security flaws in Adobe Reader. These flaws are detailed on the Adobe security page APSB11-24, listed in the References section. A specially-crafted PDF file could cause Adobe Reader to crash or, potentially, execute arbitrary code as the user running Adobe Reader when opened. These flaws are detailed on the Adobe security pages APSB11-21 and APSB11-26, listed in the References section. A PDF file with an embedded, specially-crafted SWF file could cause Adobe Reader to crash or, potentially, execute arbitrary code as the user running Adobe Reader when opened. (CVE-2011-2130, CVE-2011-2134, CVE-2011-2135, CVE-2011-2136, CVE-2011-2137, CVE-2011-2138, CVE-2011-2139, CVE-2011-2140, CVE-2011-2414, CVE-2011-2415, CVE-2011-2416, CVE-2011-2417, CVE-2011-2424, CVE-2011-2425, CVE-2011-2426, CVE-2011-2427, CVE-2011-2428, CVE-2011-2430) A flaw in Adobe Flash Player could allow an attacker to conduct cross-site scripting (XSS) attacks if a victim were tricked into visiting a specially-crafted web page. (CVE-2011-2429) All Adobe Reader users should install these updated packages. They contain Adobe Reader version 9.4.6, which is not vulnerable to these issues. All running instances of Adobe Reader must be restarted for the update to take effect. 4. Solution: Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/kb/docs/DOC-11259 5. Bugs fixed (http://bugzilla.redhat.com/): 729497 - CVE-2011-2130 CVE-2011-2134 CVE-2011-2135 CVE-2011-2136 CVE-2011-2137 CVE-2011-2138 CVE-2011-2139 CVE-2011-2140 CVE-2011-2414 CVE-2011-2415 CVE-2011-2416 CVE-2011-2417 CVE-2011-2425 flash-plugin: multiple arbitrary code execution flaws (APSB-11-21) 740201 - CVE-2011-2444 acroread, flash-plugin: Cross-site scripting vulnerability fixed in APSB11-26 740204 - CVE-2011-2429 acroread, flash-plugin: security control bypass information disclosure fixed in APSB11-26 740388 - CVE-2011-2426 CVE-2011-2427 CVE-2011-2428 CVE-2011-2430 acroread, flash-plugin: critical flaws fixed in APSB11-26 749381 - acroread: multiple code execution flaws (APSB11-24) 6. Package List: Red Hat Enterprise Linux AS version 4 Extras: i386: acroread-9.4.6-1.el4.i386.rpm acroread-plugin-9.4.6-1.el4.i386.rpm x86_64: acroread-9.4.6-1.el4.i386.rpm Red Hat Desktop version 4 Extras: i386: acroread-9.4.6-1.el4.i386.rpm acroread-plugin-9.4.6-1.el4.i386.rpm x86_64: acroread-9.4.6-1.el4.i386.rpm Red Hat Enterprise Linux ES version 4 Extras: i386: acroread-9.4.6-1.el4.i386.rpm acroread-plugin-9.4.6-1.el4.i386.rpm x86_64: acroread-9.4.6-1.el4.i386.rpm Red Hat Enterprise Linux WS version 4 Extras: i386: acroread-9.4.6-1.el4.i386.rpm acroread-plugin-9.4.6-1.el4.i386.rpm x86_64: acroread-9.4.6-1.el4.i386.rpm Red Hat Enterprise Linux Desktop Supplementary (v. 5): i386: acroread-9.4.6-1.el5.i386.rpm acroread-plugin-9.4.6-1.el5.i386.rpm x86_64: acroread-9.4.6-1.el5.i386.rpm acroread-plugin-9.4.6-1.el5.i386.rpm Red Hat Enterprise Linux Server Supplementary (v. 5): i386: acroread-9.4.6-1.el5.i386.rpm acroread-plugin-9.4.6-1.el5.i386.rpm x86_64: acroread-9.4.6-1.el5.i386.rpm acroread-plugin-9.4.6-1.el5.i386.rpm Red Hat Enterprise Linux Desktop Supplementary (v. 6): i386: acroread-9.4.6-1.el6.i686.rpm acroread-plugin-9.4.6-1.el6.i686.rpm x86_64: acroread-9.4.6-1.el6.i686.rpm acroread-plugin-9.4.6-1.el6.i686.rpm Red Hat Enterprise Linux Server Supplementary (v. 6): i386: acroread-9.4.6-1.el6.i686.rpm acroread-plugin-9.4.6-1.el6.i686.rpm x86_64: acroread-9.4.6-1.el6.i686.rpm acroread-plugin-9.4.6-1.el6.i686.rpm Red Hat Enterprise Linux Workstation Supplementary (v. 6): i386: acroread-9.4.6-1.el6.i686.rpm acroread-plugin-9.4.6-1.el6.i686.rpm x86_64: acroread-9.4.6-1.el6.i686.rpm acroread-plugin-9.4.6-1.el6.i686.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package 7. References: https://www.redhat.com/security/data/cve/CVE-2011-2130.html https://www.redhat.com/security/data/cve/CVE-2011-2134.html https://www.redhat.com/security/data/cve/CVE-2011-2135.html https://www.redhat.com/security/data/cve/CVE-2011-2136.html https://www.redhat.com/security/data/cve/CVE-2011-2137.html https://www.redhat.com/security/data/cve/CVE-2011-2138.html https://www.redhat.com/security/data/cve/CVE-2011-2139.html https://www.redhat.com/security/data/cve/CVE-2011-2140.html https://www.redhat.com/security/data/cve/CVE-2011-2414.html https://www.redhat.com/security/data/cve/CVE-2011-2415.html https://www.redhat.com/security/data/cve/CVE-2011-2416.html https://www.redhat.com/security/data/cve/CVE-2011-2417.html https://www.redhat.com/security/data/cve/CVE-2011-2424.html https://www.redhat.com/security/data/cve/CVE-2011-2425.html https://www.redhat.com/security/data/cve/CVE-2011-2426.html https://www.redhat.com/security/data/cve/CVE-2011-2427.html https://www.redhat.com/security/data/cve/CVE-2011-2428.html https://www.redhat.com/security/data/cve/CVE-2011-2429.html https://www.redhat.com/security/data/cve/CVE-2011-2430.html https://www.redhat.com/security/data/cve/CVE-2011-2431.html https://www.redhat.com/security/data/cve/CVE-2011-2432.html https://www.redhat.com/security/data/cve/CVE-2011-2433.html https://www.redhat.com/security/data/cve/CVE-2011-2434.html https://www.redhat.com/security/data/cve/CVE-2011-2435.html https://www.redhat.com/security/data/cve/CVE-2011-2436.html https://www.redhat.com/security/data/cve/CVE-2011-2437.html https://www.redhat.com/security/data/cve/CVE-2011-2438.html https://www.redhat.com/security/data/cve/CVE-2011-2439.html https://www.redhat.com/security/data/cve/CVE-2011-2440.html https://www.redhat.com/security/data/cve/CVE-2011-2442.html https://www.redhat.com/security/data/cve/CVE-2011-2444.html https://access.redhat.com/security/updates/classification/#critical http://www.adobe.com/support/security/bulletins/apsb11-21.html http://www.adobe.com/support/security/bulletins/apsb11-24.html http://www.adobe.com/support/security/bulletins/apsb11-26.html 8. Contact: The Red Hat security contact is <secalert@redhat.com>. More contact details at https://access.redhat.com/security/team/contact/ Copyright 2011 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQFOuRkFXlSAg2UNWIIRAqaIAJoC3LKpTEj6IsfoUq9JqGuHAKt3bACfcz3q 0+KSTL2IByBwtP8+xfPmUNE= =qFq6 -----END PGP SIGNATURE----- -- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce

Trust: 2.43

sources: NVD: CVE-2011-2429 // JVNDB: JVNDB-2011-002262 // BID: 49718 // VULHUB: VHN-50374 // PACKETSTORM: 106667 // PACKETSTORM: 105300 // PACKETSTORM: 110783 // PACKETSTORM: 105802 // PACKETSTORM: 106736

AFFECTED PRODUCTS

vendor:adobemodel:flash playerscope:eqversion:10.3.186.3

Trust: 1.9

vendor:adobemodel:flash playerscope:eqversion:10.2.156.12

Trust: 1.9

vendor:adobemodel:flash playerscope:eqversion:10.1.95.2

Trust: 1.9

vendor:adobemodel:flash playerscope:eqversion:10.2.157.51

Trust: 1.9

vendor:adobemodel:flash playerscope:eqversion:10.3.185.21

Trust: 1.9

vendor:adobemodel:flash playerscope:eqversion:10.3.185.25

Trust: 1.9

vendor:adobemodel:flash playerscope:eqversion:10.3.185.23

Trust: 1.9

vendor:adobemodel:flash playerscope:eqversion:10.1.105.6

Trust: 1.9

vendor:adobemodel:flash playerscope:eqversion:10.1.106.16

Trust: 1.9

vendor:adobemodel:flash playerscope:lteversion:10.3.183.7

Trust: 1.8

vendor:adobemodel:flash playerscope:eqversion:9.0.246.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:8.0.35.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:9.0.115.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:10.2.154.25

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:7.0.60.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:7.0.14.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:10.1.95.1

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:9.0.155.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:10.2.152.33

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:10.2.154.13

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:7.0.53.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:9.0.262.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:6.0.79

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:10.3.181.14

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:10.1.92.8

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:10.1.52.15

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:10.2.152.32

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:7.0.68.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:10.3.181.16

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:7.0.66.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:9.0.28.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:9.0.260.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:10.3.181.23

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:10.1.52.14.1

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:10.0.32.18

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:9.0.277.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:10.0.12.36

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:9.0.283.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:10.1.53.64

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:10.2.152

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:6.0.21.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:9.0.124.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:10.3.181.34

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:9.0.152.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:7.0.61.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:10.0.22.87

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:10.1.85.3

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:10.1.82.76

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:7.0.73.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:9.0.159.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:7.0.69.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:9.0.151.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:10.0.15.3

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:9.0.31.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:10.2.159.1

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:9.0.47.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:9.0.45.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:7.0.24.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:7.0.19.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:8.0.34.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:10.0.42.34

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:9.0.48.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:7.0.67.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:10.3.183.5

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:10.1.92.10

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:7.0.70.0

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:10.1.102.64

Trust: 1.3

vendor:adobemodel:flash playerscope:eqversion:10.0.0.584

Trust: 1.0

vendor:adobemodel:flash playerscope:eqversion:9.0.20.0

Trust: 1.0

vendor:adobemodel:flash playerscope:eqversion:8.0.24.0

Trust: 1.0

vendor:adobemodel:flash playerscope:eqversion:9.0.114.0

Trust: 1.0

vendor:adobemodel:flash playerscope:eqversion:9.0.28

Trust: 1.0

vendor:adobemodel:flash playerscope:eqversion:7.0.63

Trust: 1.0

vendor:adobemodel:flash playerscope:eqversion:8.0.22.0

Trust: 1.0

vendor:adobemodel:flash playerscope:eqversion:9.0

Trust: 1.0

vendor:adobemodel:flash playerscope:eqversion:8.0

Trust: 1.0

vendor:adobemodel:flash playerscope:eqversion:10.0.45.2

Trust: 1.0

vendor:adobemodel:flash playerscope:eqversion:10.3.181.36

Trust: 1.0

vendor:adobemodel:flash playerscope:eqversion:7.1

Trust: 1.0

vendor:adobemodel:flash playerscope:eqversion:10.0.12.10

Trust: 1.0

vendor:adobemodel:flash playerscope:eqversion:8.0.33.0

Trust: 1.0

vendor:adobemodel:flash playerscope:eqversion:9.0.20

Trust: 1.0

vendor:adobemodel:flash playerscope:eqversion:9.0.112.0

Trust: 1.0

vendor:adobemodel:flash playerscope:eqversion:7.0

Trust: 1.0

vendor:adobemodel:flash playerscope:eqversion:9.0.18d60

Trust: 1.0

vendor:adobemodel:flash playerscope:eqversion:8.0.39.0

Trust: 1.0

vendor:adobemodel:flash playerscope:eqversion:7.0.1

Trust: 1.0

vendor:adobemodel:flash playerscope:eqversion:9.0.16

Trust: 1.0

vendor:adobemodel:flash playerscope:eqversion:7.1.1

Trust: 1.0

vendor:adobemodel:flash playerscope:eqversion:9.0.125.0

Trust: 1.0

vendor:adobemodel:flash playerscope:eqversion:7.0.25

Trust: 1.0

vendor:adobemodel:flash playerscope:eqversion:8.0.42.0

Trust: 1.0

vendor:adobemodel:flash playerscope:eqversion:7.2

Trust: 1.0

vendor:adobemodel:flash playerscope:eqversion:9.125.0

Trust: 1.0

vendor:adobemodel:flash playerscope:eqversion:9.0.31

Trust: 1.0

vendor:adobemodel:flash playerscope:lteversion:10.3.186.6

Trust: 1.0

vendor:adobemodel:flash playerscope:eqversion:10.3.186.6

Trust: 0.9

vendor:adobemodel:flash playerscope:lteversion:10.3.186.6 for android

Trust: 0.8

vendor:hewlett packardmodel:hp systems insight managerscope:ltversion:7.0

Trust: 0.8

vendor:adobemodel:flash playerscope:eqversion:10.0.12.35

Trust: 0.3

vendor:adobemodel:flash playerscope:eqversion:10.2.152.21

Trust: 0.3

vendor:adobemodel:flash playerscope:eqversion:9.0.280

Trust: 0.3

vendor:susemodel:linux enterprise desktop sp4scope:eqversion:10

Trust: 0.3

vendor:hpmodel:systems insight managerscope:neversion:7.0

Trust: 0.3

vendor:hpmodel:systems insight manager sp2scope:eqversion:5.2

Trust: 0.3

vendor:adobemodel:flash playerscope:eqversion:10.3.185.22

Trust: 0.3

vendor:hpmodel:systems insight manager sp6scope:eqversion:5.0

Trust: 0.3

vendor:adobemodel:flash playerscope:eqversion:10.1.51.66

Trust: 0.3

vendor:adobemodel:flash playerscope:eqversion:10.2.154.27

Trust: 0.3

vendor:adobemodel:flash playerscope:eqversion:10.2.153.1

Trust: 0.3

vendor:adobemodel:flash playerscope:eqversion:9.0.2460

Trust: 0.3

vendor:redhatmodel:desktop extrasscope:eqversion:4

Trust: 0.3

vendor:adobemodel:flash playerscope:eqversion:8

Trust: 0.3

vendor:adobemodel:flash playerscope:eqversion:7

Trust: 0.3

vendor:adobemodel:flash playerscope:eqversion:10.3.181.22

Trust: 0.3

vendor:hpmodel:systems insight managerscope:eqversion:6.1

Trust: 0.3

vendor:researchmodel:in motion blackberry playbook tablet softwarescope:eqversion:1.0.5.2304

Trust: 0.3

vendor:hpmodel:systems insight managerscope:eqversion:6.0.0.96

Trust: 0.3

vendor:adobemodel:flash playerscope:eqversion:10.3.181.26

Trust: 0.3

vendor:researchmodel:in motion blackberry playbook tablet softwarescope:eqversion:1.0.7.2942

Trust: 0.3

vendor:sunmodel:solaris expressscope:eqversion:10

Trust: 0.3

vendor:redmodel:hat enterprise linux supplementary serverscope:eqversion:5

Trust: 0.3

vendor:redhatmodel:enterprise linux extrasscope:eqversion:4

Trust: 0.3

vendor:sunmodel:solaris expressscope:eqversion:11

Trust: 0.3

vendor:adobemodel:flash playerscope:eqversion:9.0.262

Trust: 0.3

vendor:adobemodel:flash playerscope:eqversion:10.2.154.24

Trust: 0.3

vendor:hpmodel:systems insight managerscope:eqversion:5.3

Trust: 0.3

vendor:hpmodel:systems insight manager sp1scope:eqversion:4.2

Trust: 0.3

vendor:hpmodel:systems insight manager sp3scope:eqversion:5.0

Trust: 0.3

vendor:researchmodel:in motion blackberry playbook tablet softwarescope:neversion:1.0.7.3312

Trust: 0.3

vendor:hpmodel:systems insight manager sp2scope:eqversion:4.2

Trust: 0.3

vendor:hpmodel:systems insight manager sp1scope:eqversion:5.0

Trust: 0.3

vendor:adobemodel:flash playerscope:eqversion:10.2.154.18

Trust: 0.3

vendor:adobemodel:flash playerscope:neversion:10.3.186.7

Trust: 0.3

vendor:adobemodel:flash playerscope:eqversion:10.3.183.7

Trust: 0.3

vendor:hpmodel:systems insight managerscope:eqversion:4.2

Trust: 0.3

vendor:xeroxmodel:freeflow print server 73.b3.61scope: - version: -

Trust: 0.3

vendor:adobemodel:flash playerscope:eqversion:10.0.3218

Trust: 0.3

vendor:adobemodel:flash playerscope:eqversion:9.0.289.0

Trust: 0.3

vendor:hpmodel:systems insight managerscope:eqversion:5.0

Trust: 0.3

vendor:redhatmodel:enterprise linux es extrasscope:eqversion:4

Trust: 0.3

vendor:redmodel:hat enterprise linux desktop supplementaryscope:eqversion:6

Trust: 0.3

vendor:sunmodel:solaris 10 sparcscope: - version: -

Trust: 0.3

vendor:researchmodel:in motion blackberry playbook tablet softwarescope:eqversion:1.0.5.2342

Trust: 0.3

vendor:gentoomodel:linuxscope: - version: -

Trust: 0.3

vendor:hpmodel:systems insight managerscope:eqversion:6.0

Trust: 0.3

vendor:adobemodel:flash playerscope:eqversion:10.3.186.2

Trust: 0.3

vendor:redmodel:hat enterprise linux server supplementaryscope:eqversion:6

Trust: 0.3

vendor:avayamodel:irscope:eqversion:4.0

Trust: 0.3

vendor:adobemodel:flash playerscope:eqversion:10.0.452

Trust: 0.3

vendor:hpmodel:systems insight manager sp2scope:eqversion:5.0

Trust: 0.3

vendor:susemodel:linux enterprise desktop sp1scope:eqversion:11

Trust: 0.3

vendor:researchmodel:in motion blackberry playbook tablet softwarescope:eqversion:1.0.6

Trust: 0.3

vendor:hpmodel:systems insight managerscope:eqversion:6.3

Trust: 0.3

vendor:adobemodel:flash playerscope:eqversion:9

Trust: 0.3

vendor:adobemodel:flash playerscope:neversion:10.3.183.10

Trust: 0.3

vendor:sunmodel:solaris 10 x86scope: - version: -

Trust: 0.3

vendor:adobemodel:flash playerscope:eqversion:10

Trust: 0.3

vendor:redmodel:hat enterprise linux desktop supplementary clientscope:eqversion:5

Trust: 0.3

vendor:hpmodel:systems insight manager sp5scope:eqversion:5.0

Trust: 0.3

vendor:redhatmodel:enterprise linux ws extrasscope:eqversion:4

Trust: 0.3

vendor:hpmodel:systems insight managerscope:eqversion:6.2

Trust: 0.3

vendor:hpmodel:systems insight manager sp1scope:eqversion:5.1

Trust: 0.3

vendor:redhatmodel:enterprise linux as extrasscope:eqversion:4

Trust: 0.3

vendor:adobemodel:flash playerscope:eqversion:10.3.183.4

Trust: 0.3

vendor:adobemodel:flash player release candidascope:eqversion:10.1

Trust: 0.3

vendor:adobemodel:flash playerscope:eqversion:10.2.154.28

Trust: 0.3

vendor:hpmodel:systems insight manager updatescope:eqversion:5.31

Trust: 0.3

vendor:xeroxmodel:freeflow print server 73.c0.41scope: - version: -

Trust: 0.3

vendor:redmodel:hat enterprise linux workstation supplementaryscope:eqversion:6

Trust: 0.3

vendor:adobemodel:flash playerscope:eqversion:10.1.102.65

Trust: 0.3

sources: BID: 49718 // JVNDB: JVNDB-2011-002262 // CNNVD: CNNVD-201109-368 // NVD: CVE-2011-2429

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2011-2429
value: MEDIUM

Trust: 1.0

NVD: CVE-2011-2429
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-201109-368
value: MEDIUM

Trust: 0.6

VULHUB: VHN-50374
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2011-2429
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-50374
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-50374 // JVNDB: JVNDB-2011-002262 // CNNVD: CNNVD-201109-368 // NVD: CVE-2011-2429

PROBLEMTYPE DATA

problemtype:CWE-264

Trust: 1.9

sources: VULHUB: VHN-50374 // JVNDB: JVNDB-2011-002262 // NVD: CVE-2011-2429

THREAT TYPE

remote

Trust: 0.7

sources: PACKETSTORM: 105802 // CNNVD: CNNVD-201109-368

TYPE

permissions and access control

Trust: 0.6

sources: CNNVD: CNNVD-201109-368

CONFIGURATIONS

sources: JVNDB: JVNDB-2011-002262

PATCH

title:APSB11-26url:http://www.adobe.com/support/security/bulletins/apsb11-26.html

Trust: 0.8

title:cpsid_91943url:http://kb2.adobe.com/jp/cps/919/cpsid_91943.html

Trust: 0.8

title:APSB11-26url:http://www.adobe.com/jp/support/security/bulletins/apsb11-26.html

Trust: 0.8

title:HPSBMU02769 SSRT100846url:http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03298151

Trust: 0.8

sources: JVNDB: JVNDB-2011-002262

EXTERNAL IDS

db:NVDid:CVE-2011-2429

Trust: 3.1

db:SECUNIAid:48308

Trust: 1.2

db:JVNDBid:JVNDB-2011-002262

Trust: 0.8

db:CNNVDid:CNNVD-201109-368

Trust: 0.7

db:SECUNIAid:46113

Trust: 0.7

db:NSFOCUSid:17801

Trust: 0.6

db:NSFOCUSid:17880

Trust: 0.6

db:BIDid:49718

Trust: 0.4

db:VULHUBid:VHN-50374

Trust: 0.1

db:PACKETSTORMid:106667

Trust: 0.1

db:PACKETSTORMid:105300

Trust: 0.1

db:PACKETSTORMid:110783

Trust: 0.1

db:PACKETSTORMid:105802

Trust: 0.1

db:PACKETSTORMid:106736

Trust: 0.1

sources: VULHUB: VHN-50374 // BID: 49718 // JVNDB: JVNDB-2011-002262 // PACKETSTORM: 106667 // PACKETSTORM: 105300 // PACKETSTORM: 110783 // PACKETSTORM: 105802 // PACKETSTORM: 106736 // CNNVD: CNNVD-201109-368 // NVD: CVE-2011-2429

REFERENCES

url:http://www.adobe.com/support/security/bulletins/apsb11-26.html

Trust: 2.4

url:https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a14096

Trust: 1.1

url:https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a16268

Trust: 1.1

url:http://www.redhat.com/support/errata/rhsa-2011-1333.html

Trust: 1.1

url:http://secunia.com/advisories/48308

Trust: 1.1

url:http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00025.html

Trust: 1.1

url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2011-2429

Trust: 0.8

url:https://www.jpcert.or.jp/at/2011/at110026.txt

Trust: 0.8

url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2011-2429

Trust: 0.8

url:http://secunia.com/advisories/46113

Trust: 0.6

url:http://www.nsfocus.net/vulndb/17880

Trust: 0.6

url:http://www.nsfocus.net/vulndb/17801

Trust: 0.6

url:http://www.xerox.com/download/security/security-bulletin/1284333-14afb-4baadb5bccb00/cert_xrx12-002_v1.1.pdf

Trust: 0.4

url:http://www.adobe.com

Trust: 0.3

url:http://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_adobe_flashplayer3

Trust: 0.3

url:http://support.avaya.com/css/p8/documents/100154416

Trust: 0.3

url:http://btsc.webapps.blackberry.com/btsc/search.do?cmd=displaykc&doctype=kc&externalid=kb28400

Trust: 0.3

url:http://secunia.com/vulnerability_intelligence/

Trust: 0.2

url:http://secunia.com/advisories/secunia_security_advisories/

Trust: 0.2

url:http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

Trust: 0.2

url:http://secunia.com/advisories/about_secunia_advisories/

Trust: 0.2

url:http://secunia.com/vulnerability_scanning/personal/

Trust: 0.2

url:http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

Trust: 0.2

url:https://access.redhat.com/kb/docs/doc-11259

Trust: 0.2

url:https://access.redhat.com/security/updates/classification/#critical

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2011-2429

Trust: 0.2

url:https://www.redhat.com/security/data/cve/cve-2011-2428.html

Trust: 0.2

url:https://www.redhat.com/security/data/cve/cve-2011-2444.html

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2011-2430

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2011-2428

Trust: 0.2

url:https://access.redhat.com/security/team/contact/

Trust: 0.2

url:https://www.redhat.com/mailman/listinfo/rhsa-announce

Trust: 0.2

url:https://www.redhat.com/security/data/cve/cve-2011-2430.html

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2011-2427

Trust: 0.2

url:https://nvd.nist.gov/vuln/detail/cve-2011-2426

Trust: 0.2

url:https://www.redhat.com/security/data/cve/cve-2011-2426.html

Trust: 0.2

url:https://access.redhat.com/security/team/key/#package

Trust: 0.2

url:https://www.redhat.com/security/data/cve/cve-2011-2429.html

Trust: 0.2

url:http://bugzilla.redhat.com/):

Trust: 0.2

url:https://www.redhat.com/security/data/cve/cve-2011-2427.html

Trust: 0.2

url:https://www.adobe.com/support/security/bulletins/apsb11-21.html

Trust: 0.2

url:http://www.fortiguard.com/advisory/fga-2011-32.html

Trust: 0.1

url:https://ca.secunia.com/?page=viewadvisory&vuln_id=46113

Trust: 0.1

url:http://secunia.com/products/corporate/vim/ovum_2011_request/

Trust: 0.1

url:http://secunia.com/advisories/46113/#comments

Trust: 0.1

url:http://secunia.com/advisories/46113/

Trust: 0.1

url:https://rhn.redhat.com/errata/rhsa-2011-1333.html

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-2444

Trust: 0.1

url:http://secunia.com/psi_30_beta_launch

Trust: 0.1

url:http://secunia.com/advisories/48308/#comments

Trust: 0.1

url:http://secunia.com/advisories/48308/

Trust: 0.1

url:https://ca.secunia.com/?page=viewadvisory&vuln_id=48308

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0579

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-0624

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-0627

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-0622

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0626

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0608

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0574

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2414

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-0625

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2417

Trust: 0.1

url:http://creativecommons.org/licenses/by-sa/2.5

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-0575

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2415

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-0558

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0572

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2444

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0607

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-0623

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2135

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0560

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-0620

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0621

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-0560

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0609

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0624

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-0626

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2139

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2425

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2107

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2416

Trust: 0.1

url:http://www.adobe.com/support/security/bulletins/apsb11-02.html

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2429

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2110

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0628

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-0574

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0573

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0575

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-0571

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2424

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-0559

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2426

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0620

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-0579

Trust: 0.1

url:http://www.adobe.com/support/security/bulletins/apsb11-13.html

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-0578

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-0611

Trust: 0.1

url:http://www.adobe.com/support/security/bulletins/apsb11-12.html

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2130

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-0573

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-0561

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2134

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-0572

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-0618

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0619

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2137

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0561

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2138

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0558

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-0589

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2136

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0578

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0623

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-0621

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-0577

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0589

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-0609

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0627

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2428

Trust: 0.1

url:http://www.adobe.com/support/security/advisories/apsa11-02.html

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-0619

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-0628

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-0607

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2430

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2427

Trust: 0.1

url:http://security.gentoo.org/glsa/glsa-201110-11.xml

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-2140

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0559

Trust: 0.1

url:http://security.gentoo.org/

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0625

Trust: 0.1

url:http://www.adobe.com/support/security/advisories/apsa11-01.html

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-0608

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0571

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0622

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0611

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0618

Trust: 0.1

url:http://nvd.nist.gov/nvd.cfm?cvename=cve-2011-0577

Trust: 0.1

url:https://bugs.gentoo.org.

Trust: 0.1

url:https://www.redhat.com/security/data/cve/cve-2011-2425.html

Trust: 0.1

url:https://www.redhat.com/security/data/cve/cve-2011-2415.html

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-2416

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-2438

Trust: 0.1

url:https://www.redhat.com/security/data/cve/cve-2011-2424.html

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-2137

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-2130

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-2414

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-2425

Trust: 0.1

url:https://www.redhat.com/security/data/cve/cve-2011-2432.html

Trust: 0.1

url:https://www.redhat.com/security/data/cve/cve-2011-2436.html

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-2415

Trust: 0.1

url:https://www.redhat.com/security/data/cve/cve-2011-2438.html

Trust: 0.1

url:https://www.redhat.com/security/data/cve/cve-2011-2138.html

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-2434

Trust: 0.1

url:https://www.redhat.com/security/data/cve/cve-2011-2416.html

Trust: 0.1

url:https://www.redhat.com/security/data/cve/cve-2011-2439.html

Trust: 0.1

url:https://www.redhat.com/security/data/cve/cve-2011-2431.html

Trust: 0.1

url:https://www.redhat.com/security/data/cve/cve-2011-2135.html

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-2433

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-2435

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-2139

Trust: 0.1

url:https://www.redhat.com/security/data/cve/cve-2011-2435.html

Trust: 0.1

url:https://www.redhat.com/security/data/cve/cve-2011-2442.html

Trust: 0.1

url:https://www.redhat.com/security/data/cve/cve-2011-2137.html

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-2135

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-2417

Trust: 0.1

url:https://www.redhat.com/security/data/cve/cve-2011-2433.html

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-2432

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-2136

Trust: 0.1

url:http://www.adobe.com/support/security/bulletins/apsb11-24.html

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-2431

Trust: 0.1

url:https://www.redhat.com/security/data/cve/cve-2011-2140.html

Trust: 0.1

url:https://www.redhat.com/security/data/cve/cve-2011-2130.html

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-2436

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-2138

Trust: 0.1

url:https://www.redhat.com/security/data/cve/cve-2011-2414.html

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-2134

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-2140

Trust: 0.1

url:https://rhn.redhat.com/errata/rhsa-2011-1434.html

Trust: 0.1

url:https://www.redhat.com/security/data/cve/cve-2011-2139.html

Trust: 0.1

url:https://www.redhat.com/security/data/cve/cve-2011-2134.html

Trust: 0.1

url:https://www.redhat.com/security/data/cve/cve-2011-2437.html

Trust: 0.1

url:https://www.redhat.com/security/data/cve/cve-2011-2417.html

Trust: 0.1

url:https://www.redhat.com/security/data/cve/cve-2011-2136.html

Trust: 0.1

url:https://www.redhat.com/security/data/cve/cve-2011-2440.html

Trust: 0.1

url:https://www.redhat.com/security/data/cve/cve-2011-2434.html

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-2437

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-2439

Trust: 0.1

url:https://nvd.nist.gov/vuln/detail/cve-2011-2424

Trust: 0.1

sources: VULHUB: VHN-50374 // BID: 49718 // JVNDB: JVNDB-2011-002262 // PACKETSTORM: 106667 // PACKETSTORM: 105300 // PACKETSTORM: 110783 // PACKETSTORM: 105802 // PACKETSTORM: 106736 // CNNVD: CNNVD-201109-368 // NVD: CVE-2011-2429

CREDITS

Neil Bergman of Cigital

Trust: 0.9

sources: BID: 49718 // CNNVD: CNNVD-201109-368

SOURCES

db:VULHUBid:VHN-50374
db:BIDid:49718
db:JVNDBid:JVNDB-2011-002262
db:PACKETSTORMid:106667
db:PACKETSTORMid:105300
db:PACKETSTORMid:110783
db:PACKETSTORMid:105802
db:PACKETSTORMid:106736
db:CNNVDid:CNNVD-201109-368
db:NVDid:CVE-2011-2429

LAST UPDATE DATE

2024-08-14T13:13:12.154000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-50374date:2018-10-30T00:00:00
db:BIDid:49718date:2015-03-19T08:41:00
db:JVNDBid:JVNDB-2011-002262date:2013-03-27T00:00:00
db:CNNVDid:CNNVD-201109-368date:2011-09-26T00:00:00
db:NVDid:CVE-2011-2429date:2018-10-30T16:26:24.687

SOURCES RELEASE DATE

db:VULHUBid:VHN-50374date:2011-09-22T00:00:00
db:BIDid:49718date:2011-09-21T00:00:00
db:JVNDBid:JVNDB-2011-002262date:2011-09-28T00:00:00
db:PACKETSTORMid:106667date:2011-11-07T07:03:26
db:PACKETSTORMid:105300date:2011-09-23T13:33:00
db:PACKETSTORMid:110783date:2012-03-14T05:16:39
db:PACKETSTORMid:105802date:2011-10-14T06:16:06
db:PACKETSTORMid:106736date:2011-11-08T15:21:13
db:CNNVDid:CNNVD-201109-368date:1900-01-01T00:00:00
db:NVDid:CVE-2011-2429date:2011-09-22T03:38:38.273