cbcvebase.
CVE-2010-0187
published 2010-02-15

CVE-2010-0187: Adobe Flash Player before 10.0.45.2 and Adobe AIR before 1.5.3.9130 allow remote attackers to cause a denial of service (application crash) via a modified SWF…

PriorityP425medium4.3CVSS 2.0
AVNACMAuNCNINAP
EXPLOIT
EPSS
15.63%
96.4th percentile
Adobe Flash Player before 10.0.45.2 and Adobe AIR before 1.5.3.9130 allow remote attackers to cause a denial of service (application crash) via a modified SWF file.

Affected

53 ranges· showing 25
VendorProductVersion rangeFixed in
adobeadobe_air<= 1.5.3.9120
adobeadobe_air
adobeadobe_air
adobeadobe_air
adobeadobe_air
adobeadobe_air
adobeflash_player<= 10.0.42.34
adobeflash_player
adobeflash_player
adobeflash_player
adobeflash_player
adobeflash_player
adobeflash_player
adobeflash_player
adobeflash_player
adobeflash_player
adobeflash_player
adobeflash_player
adobeflash_player
adobeflash_player
adobeflash_player
adobeflash_player
adobeflash_player
adobeflash_player
adobeflash_player

Detection & IOCsextracted from sources · hover to see the quote

urlhttps://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/11182.tar.gz
bytes
Bytes at offsets 1360-1363 of SWF file set to: 0x44, 0x43, 0x42, 0x41
  • A crash-triggering SWF file has specific bytes at offsets 1360–1363 modified to 0x44, 0x43, 0x42, 0x41 respectively. Inspect SWF files for this byte pattern at those offsets as a potential indicator of a weaponized file.
  • Public exploit PoC (exploit-db #11182) targets Internet Explorer 6, 7, and 8 on Windows XP SP3 and Windows 7 via a malicious SWF delivered through the Shockwave Flash Object.
  • CVE-2010-0187 also affects Adobe Flash Player v9.x (tracked separately as CVE-2010-2172); monitor v9.x deployments in addition to v10.x.
  • ·Adobe AIR versions before 1.5.3.9130 are also vulnerable to this DoS.
  • ·Adobe Reader 9.x embeds Flash Player and was also subject to a related update (APSB10-07); environments running Adobe Reader 9.x should be assessed as well.

CVSS provenance

nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:N/A:P
vendor_redhat4.3MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.