10
CVE-2010-3635
- EPSS 6%
- Veröffentlicht 10.11.2010 03:00:02
- Zuletzt bearbeitet 16.06.2026 23:23:11
- Quelle psirt@adobe.com
- CVE-Watchlists
- Unerledigt
Adobe Flash Media Server (FMS) 3.0.x before 3.0.7, 3.5.x before 3.5.5, and 4.0.x before 4.0.1 allows attackers to execute arbitrary code via unspecified vectors, related to a "segmentation fault vulnerability."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Adobe ≫ Flash Media Server Version3.0
Adobe ≫ Flash Media Server Version3.0.1
Adobe ≫ Flash Media Server Version3.0.2
Adobe ≫ Flash Media Server Version3.0.3
Adobe ≫ Flash Media Server Version3.0.4
Adobe ≫ Flash Media Server Version3.0.5
Adobe ≫ Flash Media Server Version3.0.6
Adobe ≫ Flash Media Server Version3.5
Adobe ≫ Flash Media Server Version3.5.1
Adobe ≫ Flash Media Server Version3.5.2
Adobe ≫ Flash Media Server Version3.5.3
Adobe ≫ Flash Media Server Version3.5.4
Adobe ≫ Flash Media Server Version4.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 6% | 0.924 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
CWE-94 Improper Control of Generation of Code ('Code Injection')
The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.
http://www.adobe.com/support/security/bulletins/apsb10-27.html
http://www.securityfocus.com/bid/44753
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11333