Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, does not properly handle unspecified encodings during the parsing of a cross-domain policy file, which allows remote web servers to bypass intended access restrictions via unknown vectors.
References
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
History
21 Nov 2024, 01:19
Type | Values Removed | Values Added |
---|---|---|
References | () http://blogs.sun.com/security/entry/multiple_vulnerabilities_in_adobe_flash1 - Broken Link | |
References | () http://jvn.jp/en/jp/JVN48425028/index.html - Third Party Advisory, VDB Entry | |
References | () http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000054.html - Third Party Advisory, VDB Entry | |
References | () http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html - Mailing List, Third Party Advisory | |
References | () http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00002.html - Third Party Advisory | |
References | () http://marc.info/?l=bugtraq&m=130331642631603&w=2 - Mailing List, Third Party Advisory | |
References | () http://secunia.com/advisories/42183 - Third Party Advisory | |
References | () http://secunia.com/advisories/42926 - Third Party Advisory | |
References | () http://secunia.com/advisories/43026 - Third Party Advisory | |
References | () http://security.gentoo.org/glsa/glsa-201101-09.xml - Third Party Advisory | |
References | () http://support.apple.com/kb/HT4435 - Third Party Advisory | |
References | () http://www.adobe.com/support/security/bulletins/apsb10-26.html - Patch, Vendor Advisory | |
References | () http://www.redhat.com/support/errata/RHSA-2010-0829.html - Third Party Advisory | |
References | () http://www.redhat.com/support/errata/RHSA-2010-0834.html - Third Party Advisory | |
References | () http://www.redhat.com/support/errata/RHSA-2010-0867.html - Third Party Advisory | |
References | () http://www.securityfocus.com/bid/44691 - Third Party Advisory, VDB Entry | |
References | () http://www.vupen.com/english/advisories/2010/2903 - Third Party Advisory | |
References | () http://www.vupen.com/english/advisories/2010/2906 - Third Party Advisory | |
References | () http://www.vupen.com/english/advisories/2010/2918 - Third Party Advisory | |
References | () http://www.vupen.com/english/advisories/2011/0173 - Third Party Advisory | |
References | () http://www.vupen.com/english/advisories/2011/0192 - Third Party Advisory | |
References | () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12142 - Third Party Advisory | |
References | () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15913 - Third Party Advisory |
17 May 2024, 17:27
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* | |
First Time |
Linux linux Kernel
|
Information
Published : 2010-11-07 22:00
Updated : 2024-11-21 01:19
NVD link : CVE-2010-3636
Mitre link : CVE-2010-3636
CVE.ORG link : CVE-2010-3636
JSON object : View
Products Affected
- android
microsoft
- windows
sun
- solaris
linux
- linux_kernel
apple
- mac_os_x
adobe
- flash_player
CWE
CWE-264
Permissions, Privileges, and Access Controls