virus logo Intrusion Prevention

Adobe.Flash.newfunction.Handling.Code.Execution

description-logoDescription

This indicates an attack attempt against a memory-corruption vulnerability in Adobe products.
The vulnerability is caused by an error in "authplay.dll" while handling malicious SWF content. It allows a remote attacker to execute arbitrary code via sending a crafted PDF document or FLASH file.

affected-products-logoAffected Products

Adobe Flash Player 10.0.45.2, 9.0.262, and earlier 10.0.x and 9.0.x versions for Windows, Macintosh, Linux and Solaris
Adobe Reader and Acrobat 9.3.2 and earlier 9.x versions for Windows, Macintosh and UNIX

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Refer to the vendor's web site for the suggested workaround:
http://www.adobe.com/support/security/bulletins/apsb10-14.html
http://www.adobe.com/support/security/bulletins/apsb10-15.html

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

References

http://www.symantec.com/connect/blogs/analysis-zero-day-exploit-adobe-flash-and-reader http://blog.zynamics.com/2010/06/09/analyzing-the-currently-exploited-0-day-for-adobe-reader-and-adobe-flash/
ID 23305
Created Jun 08, 2010
Updated Aug 02, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
CVE ID CVE-2010-1297
Known Exploited Yes
Exploit Prediction Score 35.54%
Default Action drop
Active
Affected OS Windows, Linux, Solaris, MacOS
Affected App Adobe