CVE-2011-0609
Description
Unspecified vulnerability in Adobe Flash Player 10.2.154.13 and earlier on Windows, Mac OS X, Linux, and Solaris; 10.1.106.16 and earlier on Android; Adobe AIR 2.5.1 and earlier; and Authplay.dll (aka AuthPlayLib.bundle) in Adobe Reader and Acrobat 9.x through 9.4.2 and 10.x through 10.0.1 on Windows and Mac OS X, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted Flash content, as demonstrated by a .swf file embedded in an Excel spreadsheet, and as exploited in the wild in March 2011.
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
92.011
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Upgrade Adobe flash player 10.0.0.584 to latest version | Windows |
| Vulnerabilities CVE-2011-0609 are affected in Acrobat Reader 10.0.1 | Windows |
| Vulnerabilities CVE-2011-0609 are affected in Adobe Flash Player Plugin 10.2.154.13 | Windows |
| Vulnerabilities CVE-2011-0609 are affected in Adobe Flash Player PPAPI 10.2.154.13 | Windows |
| Vulnerabilities CVE-2011-0609 are affected in Adobe Acrobat X Standard 10.0.1 | Windows |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-315465 | Adobe Acrobat Reader MUI DC (Classic Track) update - All languages (15.006.30527) (APSB20-48) |
| PATCH-302922 | Adobe Acrobat 10.1.16 Pro and Standard update - All languages (APSB15-24) (Deployment-Only) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234