6.9

CVE-2011-0575

Untrusted search path vulnerability in Adobe Flash Player before 10.2.152.26 allows local users to gain privileges via a Trojan horse DLL in the current working directory.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AdobeFlash Player Version <= 10.2.152
AdobeFlash Player Version6.0.21.0
AdobeFlash Player Version6.0.79
AdobeFlash Player Version7.0
AdobeFlash Player Version7.0.1
AdobeFlash Player Version7.0.14.0
AdobeFlash Player Version7.0.19.0
AdobeFlash Player Version7.0.24.0
AdobeFlash Player Version7.0.25
AdobeFlash Player Version7.0.53.0
AdobeFlash Player Version7.0.60.0
AdobeFlash Player Version7.0.61.0
AdobeFlash Player Version7.0.63
AdobeFlash Player Version7.0.66.0
AdobeFlash Player Version7.0.67.0
AdobeFlash Player Version7.0.68.0
AdobeFlash Player Version7.0.69.0
AdobeFlash Player Version7.0.70.0
AdobeFlash Player Version7.0.73.0
AdobeFlash Player Version7.1
AdobeFlash Player Version7.1.1
AdobeFlash Player Version7.2
AdobeFlash Player Version8.0
AdobeFlash Player Version8.0.22.0
AdobeFlash Player Version8.0.24.0
AdobeFlash Player Version8.0.33.0
AdobeFlash Player Version8.0.34.0
AdobeFlash Player Version8.0.35.0
AdobeFlash Player Version8.0.39.0
AdobeFlash Player Version8.0.42.0
AdobeFlash Player Version9.0
AdobeFlash Player Version9.0.16
AdobeFlash Player Version9.0.18d60
AdobeFlash Player Version9.0.20
AdobeFlash Player Version9.0.20.0
AdobeFlash Player Version9.0.28
AdobeFlash Player Version9.0.28.0
AdobeFlash Player Version9.0.31
AdobeFlash Player Version9.0.31.0
AdobeFlash Player Version9.0.45.0
AdobeFlash Player Version9.0.47.0
AdobeFlash Player Version9.0.48.0
AdobeFlash Player Version9.0.112.0
AdobeFlash Player Version9.0.114.0
AdobeFlash Player Version9.0.115.0
AdobeFlash Player Version9.0.124.0
AdobeFlash Player Version9.0.125.0
AdobeFlash Player Version9.0.151.0
AdobeFlash Player Version9.0.152.0
AdobeFlash Player Version9.0.155.0
AdobeFlash Player Version9.0.159.0
AdobeFlash Player Version9.0.246.0
AdobeFlash Player Version9.0.260.0
AdobeFlash Player Version9.0.262.0
AdobeFlash Player Version9.0.277.0
AdobeFlash Player Version9.0.283.0
AdobeFlash Player Version9.125.0
AdobeFlash Player Version10.0.0.584
AdobeFlash Player Version10.0.12.10
AdobeFlash Player Version10.0.12.36
AdobeFlash Player Version10.0.15.3
AdobeFlash Player Version10.0.22.87
AdobeFlash Player Version10.0.32.18
AdobeFlash Player Version10.0.42.34
AdobeFlash Player Version10.0.45.2
AdobeFlash Player Version10.1.52.14.1
AdobeFlash Player Version10.1.52.15
AdobeFlash Player Version10.1.53.64
AdobeFlash Player Version10.1.82.76
AdobeFlash Player Version10.1.85.3
AdobeFlash Player Version10.1.92.8
AdobeFlash Player Version10.1.92.10
AdobeFlash Player Version10.1.95.1
AdobeFlash Player Version10.1.95.2
AdobeFlash Player Version10.1.102.64
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.7% 0.482
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.9 3.4 10
AV:L/AC:M/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://blogs.sun.com/security/entry/multiple_vulnerabilities_in_adobe_flash2
http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00003.html
http://secunia.com/advisories/43267
http://secunia.com/advisories/43292
http://secunia.com/advisories/43340
http://secunia.com/advisories/43351
http://secunia.com/advisories/43747
http://www.adobe.com/support/security/bulletins/apsb11-02.html
Patch
Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2011-0206.html
http://www.redhat.com/support/errata/RHSA-2011-0259.html
http://www.redhat.com/support/errata/RHSA-2011-0368.html
http://www.securitytracker.com/id?1025055
http://www.vupen.com/english/advisories/2011/0348
http://www.vupen.com/english/advisories/2011/0383
http://www.vupen.com/english/advisories/2011/0402
http://www.vupen.com/english/advisories/2011/0646
http://osvdb.org/70919
http://www.securityfocus.com/archive/1/516398/100/0/threaded
http://www.securityfocus.com/bid/46197
https://exchange.xforce.ibmcloud.com/vulnerabilities/65238
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14095
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16127