CVE-2011-2134
published 2011-08-10CVE-2011-2134: Buffer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1…
PriorityP349critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
11.55%
95.5th percentile
Buffer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1 on Windows and Mac OS X and before 2.7.1.1961 on Android, allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2011-2130, CVE-2011-2137, CVE-2011-2414, and CVE-2011-2415.
Affected
102 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | adobe_air | <= 2.7 | — |
| adobe | adobe_air | — | — |
| adobe | adobe_air | — | — |
| adobe | adobe_air | — | — |
| adobe | adobe_air | — | — |
| adobe | adobe_air | — | — |
| adobe | adobe_air | — | — |
| adobe | adobe_air | — | — |
| adobe | adobe_air | — | — |
| adobe | adobe_air | — | — |
| adobe | flash_player | <= 10.3.181.36 | — |
| adobe | flash_player | <= 10.3.185.25 | — |
| adobe | flash_player | — | — |
| adobe | flash_player | — | — |
| adobe | flash_player | — | — |
| adobe | flash_player | — | — |
| adobe | flash_player | — | — |
| adobe | flash_player | — | — |
| adobe | flash_player | — | — |
| adobe | flash_player | — | — |
| adobe | flash_player | — | — |
| adobe | flash_player | — | — |
| adobe | flash_player | — | — |
| adobe | flash_player | — | — |
| adobe | flash_player | — | — |
CVSS provenance
nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
vendor_redhat10.0CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-cxvv-q582-f9c6: Buffer overflow in Adobe Flash Player before 10
ghsa_unreviewed·2022-05-14·CVSS 10.0
CVE-2011-2134 [CRITICAL] CWE-119 GHSA-cxvv-q582-f9c6: Buffer overflow in Adobe Flash Player before 10
Buffer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1 on Windows and Mac OS X and before 2.7.1.1961 on Android, allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2011-2130, CVE-2011-2137, CVE-2011-2414, and CVE-2011-2415.
GHSA
GHSA-jcx6-75pf-3r83: Buffer overflow in Adobe Flash Player before 10
ghsa_unreviewed·2022-05-14·CVSS 10.0
CVE-2011-2137 [CRITICAL] CWE-119 GHSA-jcx6-75pf-3r83: Buffer overflow in Adobe Flash Player before 10
Buffer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1 on Windows and Mac OS X and before 2.7.1.1961 on Android, allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2011-2130, CVE-2011-2134, CVE-2011-2414, and CVE-2011-2415.
GHSA
GHSA-xmwf-48rp-j685: Buffer overflow in Adobe Flash Player before 10
ghsa_unreviewed·2022-05-14·CVSS 10.0
CVE-2011-2130 [CRITICAL] CWE-119 GHSA-xmwf-48rp-j685: Buffer overflow in Adobe Flash Player before 10
Buffer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1 on Windows and Mac OS X and before 2.7.1.1961 on Android, allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2011-2134, CVE-2011-2137, CVE-2011-2414, and CVE-2011-2415.
GHSA
GHSA-qfgx-cf6g-rfqf: Buffer overflow in Adobe Flash Player before 10
ghsa_unreviewed·2022-05-14·CVSS 10.0
CVE-2011-2415 [CRITICAL] CWE-119 GHSA-qfgx-cf6g-rfqf: Buffer overflow in Adobe Flash Player before 10
Buffer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1 on Windows and Mac OS X and before 2.7.1.1961 on Android, allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2011-2130, CVE-2011-2134, CVE-2011-2137, and CVE-2011-2414.
GHSA
GHSA-mfw6-8hcm-9f78: Buffer overflow in Adobe Flash Player before 10
ghsa_unreviewed·2022-05-14·CVSS 10.0
CVE-2011-2414 [CRITICAL] CWE-119 GHSA-mfw6-8hcm-9f78: Buffer overflow in Adobe Flash Player before 10
Buffer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1 on Windows and Mac OS X and before 2.7.1.1961 on Android, allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2011-2130, CVE-2011-2134, CVE-2011-2137, and CVE-2011-2415.
Red Hat
flash-plugin: multiple arbitrary code execution flaws (APSB-11-21)
vendor_redhat·2011-08-09·CVSS 10.0
CVE-2011-2415 [CRITICAL] flash-plugin: multiple arbitrary code execution flaws (APSB-11-21)
flash-plugin: multiple arbitrary code execution flaws (APSB-11-21)
Buffer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1 on Windows and Mac OS X and before 2.7.1.1961 on Android, allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2011-2130, CVE-2011-2134, CVE-2011-2137, and CVE-2011-2414.
Red Hat
flash-plugin: multiple arbitrary code execution flaws (APSB-11-21)
vendor_redhat·2011-08-09·CVSS 10.0
CVE-2011-2137 [CRITICAL] flash-plugin: multiple arbitrary code execution flaws (APSB-11-21)
flash-plugin: multiple arbitrary code execution flaws (APSB-11-21)
Buffer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1 on Windows and Mac OS X and before 2.7.1.1961 on Android, allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2011-2130, CVE-2011-2134, CVE-2011-2414, and CVE-2011-2415.
Red Hat
flash-plugin: multiple arbitrary code execution flaws (APSB-11-21)
vendor_redhat·2011-08-09·CVSS 10.0
CVE-2011-2130 [CRITICAL] flash-plugin: multiple arbitrary code execution flaws (APSB-11-21)
flash-plugin: multiple arbitrary code execution flaws (APSB-11-21)
Buffer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1 on Windows and Mac OS X and before 2.7.1.1961 on Android, allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2011-2134, CVE-2011-2137, CVE-2011-2414, and CVE-2011-2415.
Red Hat
flash-plugin: multiple arbitrary code execution flaws (APSB-11-21)
vendor_redhat·2011-08-09·CVSS 10.0
CVE-2011-2414 [CRITICAL] flash-plugin: multiple arbitrary code execution flaws (APSB-11-21)
flash-plugin: multiple arbitrary code execution flaws (APSB-11-21)
Buffer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1 on Windows and Mac OS X and before 2.7.1.1961 on Android, allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2011-2130, CVE-2011-2134, CVE-2011-2137, and CVE-2011-2415.
Red Hat
flash-plugin: multiple arbitrary code execution flaws (APSB-11-21)
vendor_redhat·2011-08-09·CVSS 10.0
CVE-2011-2134 [CRITICAL] flash-plugin: multiple arbitrary code execution flaws (APSB-11-21)
flash-plugin: multiple arbitrary code execution flaws (APSB-11-21)
Buffer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1 on Windows and Mac OS X and before 2.7.1.1961 on Android, allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2011-2130, CVE-2011-2137, CVE-2011-2414, and CVE-2011-2415.
No detection rules found.
No public exploits indexed.
http://lists.opensuse.org/opensuse-security-announce/2011-08/msg00006.htmlhttp://lists.opensuse.org/opensuse-security-announce/2011-08/msg00007.htmlhttp://lists.opensuse.org/opensuse-security-announce/2011-08/msg00008.htmlhttp://secunia.com/advisories/48308http://www.adobe.com/support/security/bulletins/apsb11-21.htmlhttp://www.redhat.com/support/errata/RHSA-2011-1144.htmlhttp://www.us-cert.gov/cas/techalerts/TA11-222A.htmlhttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13979https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15941http://lists.opensuse.org/opensuse-security-announce/2011-08/msg00006.htmlhttp://lists.opensuse.org/opensuse-security-announce/2011-08/msg00007.htmlhttp://lists.opensuse.org/opensuse-security-announce/2011-08/msg00008.htmlhttp://secunia.com/advisories/48308http://www.adobe.com/support/security/bulletins/apsb11-21.htmlhttp://www.redhat.com/support/errata/RHSA-2011-1144.htmlhttp://www.us-cert.gov/cas/techalerts/TA11-222A.htmlhttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13979https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15941
2011-08-10
Published