Release DateMar 16, 2011 |
Severitycritical |
ImpactThe system could be compromised by Remote attackers to gain control of vulnerable systems. |
DescriptionThe Adobe Flash Player is software for viewing multimedia, Rich Internet Applications and streaming video and audio, on a computer web browser or on supported mobile devices.Unspecified vulnerability exists in Adobe Flash Player 10.2.154.13 and earlier on Windows, Mac OS X, Linux, and Solaris; 10.1.106.16 and earlier on Android; Adobe AIR 2.5.1 and earlier; and Authplay.dll (aka AuthPlayLib.bundle) in Adobe Reader and Acrobat 9.x through 9.4.2 and 10.x through 10.0.1 on Windows and Mac OS X, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted Flash content. (CVE-2011-0609) |
Affected ProductsAdobe Flash Player 10.2.152.33 and earlier versions for Windows, Macintosh, Linux and Solaris operating systemsAdobe Flash Player 10.2.154.13 and earlier for Chrome users Adobe Flash Player 10.1.106.16 and earlier for Android The Authplay.dll component that ships with Adobe Reader and Acrobat X (10.0.1) and earlier 10.x and 9.x versions for Windows and Macintosh operating systems. |
Recommended ActionsApply the most recent upgrade or patch from the vendor.http://www.adobe.com/support/security/advisories/apsa11-01.html http://www.adobe.com/support/security/bulletins/apsb11-05.html http://www.adobe.com/support/security/bulletins/apsb11-06.html |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2011-0609 |
Reference/shttp://www.adobe.com/support/security/advisories/apsa11-01.htmlhttp://www.adobe.com/support/security/bulletins/apsb11-05.html http://www.adobe.com/support/security/bulletins/apsb11-06.html http://www.securityfocus.com/bid/46860 (BugTraq) |
