cbcvebase.
CVE-2010-2884
published 2010-09-15

CVE-2010-2884: Adobe Flash Player 10.1.82.76 and earlier on Windows, Mac OS X, Linux, and Solaris and 10.1.92.10 on Android; authplay.dll in Adobe Reader and Acrobat 9.x…

PriorityP275critical9.3CVSS 2.0
AVNACMAuNCCICAC
ITWVulnCheck KEV
Exploited in the wild
EPSS
15.62%
96.4th percentile
Adobe Flash Player 10.1.82.76 and earlier on Windows, Mac OS X, Linux, and Solaris and 10.1.92.10 on Android; authplay.dll in Adobe Reader and Acrobat 9.x before 9.4; and authplay.dll in Adobe Reader and Acrobat 8.x before 8.2.5 on Windows and Mac OS X allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, as exploited in the wild in September 2010.

Affected

161 ranges· showing 25
VendorProductVersion rangeFixed in
adobeacrobat<= 9.3.4
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat
adobeacrobat

Detection & IOCsextracted from sources · hover to see the quote

filenameauthplay.dll
  • Vulnerability was actively exploited in the wild in September 2010; any Flash or PDF content delivered during that period should be treated as suspicious
  • Flash Player versions at or below 10.1.82.76 (Windows/Mac/Linux/Solaris) and 10.1.92.10 (Android) are vulnerable; flag these version strings in asset inventory or HTTP User-Agent/plugin telemetry
  • Adobe Reader/Acrobat 9.x before 9.4 and 8.x before 8.2.5 ship the vulnerable authplay.dll; presence of this DLL in those version ranges indicates an exploitable host
  • Fixed Flash versions to use as a detection threshold: Flash 10 patched at 10.1.85.3, Flash 9 patched at 9.0.283 — alert on any version below these thresholds
  • ·The attack vectors are unspecified in all public disclosures; no specific file format, network pattern, or payload structure has been published, limiting signature-based detection
  • ·Red Hat marked both acroread and flash-plugin packages as 'Not affected' for RHEL 6, so detection rules targeting RHEL 6 package versions may produce false positives

CVSS provenance

nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
vulncheck9.3CRITICAL
vendor_redhat9.3CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.