Release DateFeb 12, 2010 |
Severitymedium |
ImpactDenial of Service: Remote attackers can crash vulnerable systems. |
DescriptionThis indicates an attack attempt to exploit a denial-of-service vulnerabilityin Adobe Shockwave Flash. This vulnerability can be exploited via a crafted Flash file (SWF). |
Affected ProductsAdobe Flash Player 10.0.42.34 and earlier versionsAdobe AIR version 1.5.3.1920 and earlier versions |
Recommended ActionsUpgrade to the latest version, available from the vendor's web site:http://get.adobe.com/flashplayer/ |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2010-0187 |
Reference/shttp://sebug.net/exploit/18967/http://www.exploit-db.com/sploits/ie_crash.tar.gz http://www.adobe.com/support/security/bulletins/apsb10-06.html http://www.securityfocus.com/bid/38200 (BugTraq) |
