CVE-2011-0611
HIGHCVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Lifecycle Timeline
5Description
Adobe Flash Player before 10.2.154.27 on Windows, Mac OS X, Linux, and Solaris and 10.2.156.12 and earlier on Android; Adobe AIR before 2.6.19140; and Authplay.dll (aka AuthPlayLib.bundle) in Adobe Reader 9.x before 9.4.4 and 10.x through 10.0.1 on Windows, Adobe Reader 9.x before 9.4.4 and 10.x before 10.0.3 on Mac OS X, and Adobe Acrobat 9.x before 9.4.4 and 10.x before 10.0.3 on Windows and Mac OS X allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted Flash content; as demonstrated by a Microsoft Office document with an embedded .swf file that has a size inconsistency in a "group of included constants," object type confusion, ActionScript that adds custom functions to prototypes, and Date objects; and as exploited in the wild in April 2011.
Analysis
Adobe Flash Player contains a type confusion vulnerability in object handling that allows remote attackers to execute arbitrary code via malicious SWF content, actively exploited in targeted attacks in April 2011.
Technical Context
The CWE-843 type confusion occurs when Flash Player's ActionScript Virtual Machine (AVM2) incorrectly handles certain object types, allowing an attacker to cause the interpreter to treat one object type as another, leading to arbitrary memory read/write and code execution.
Affected Products
['Adobe Flash Player before 10.2.154.27 (Windows/Mac/Linux/Solaris)', 'Adobe Flash Player 10.2.156.12 and earlier (Android)', 'Adobe AIR before 2.6.19140', 'Authplay.dll in Adobe Reader 9.x/10.x']
Remediation
Flash Player is end-of-life. Remove all installations. Block Flash content at network perimeter. Modern browsers no longer support Flash natively.
Priority Score
Share
External POC / Exploit Code
Leaving vuln.today