Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-2458

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2011-2458
Last Modified 02 Nov 2013 11:14:46
Published 11 Nov 2011 11:55:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-2458

Summary

Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and before 11.1.102.59 on Android, and Adobe AIR before 3.1.0.4880, when Internet Explorer is used, allows remote attackers to bypass the cross-domain policy via a crafted web site.

Vulnerable Systems

Application

  • Adobe Air 1.0

  • Adobe Air 1.0.1

  • Adobe Air 1.1

  • Adobe Air 1.5

  • Adobe Air 1.5.1

  • Adobe Air 1.5.2

  • Adobe Air 1.5.3

  • Adobe Air 1.5.3.9120

  • Adobe Air 2.0.2

  • Adobe Air 2.0.3

  • Adobe Air 2.0.4

  • Adobe Air 2.6

  • Adobe Air 2.7

  • Adobe Air 2.7.0.1948

  • Adobe Air 2.7.0.1953

  • Adobe Air 2.7.1

  • Adobe Air 3.0.0.408

  • Adobe Air 3.1.0.485

  • Adobe Flash Player 10.0.0.584

  • Adobe Flash Player 10.0.12.10

  • Adobe Flash Player 10.0.12.36

  • Adobe Flash Player 10.0.15.3

  • Adobe Flash Player 10.0.22.87

  • Adobe Flash Player 10.0.32.18

  • Adobe Flash Player 10.0.42.34

  • Adobe Flash Player 10.0.45.2

  • Adobe Flash Player 10.1.102.64

  • Adobe Flash Player 10.1.105.6

  • Adobe Flash Player 10.1.106.16

  • Adobe Flash Player 10.1.52.14.1

  • Adobe Flash Player 10.1.52.15

  • Adobe Flash Player 10.1.53.64

  • Adobe Flash Player 10.1.82.76

  • Adobe Flash Player 10.1.85.3

  • Adobe Flash Player 10.1.92.10

  • Adobe Flash Player 10.1.92.8

  • Adobe Flash Player 10.1.95.1

  • Adobe Flash Player 10.1.95.2

  • Adobe Flash Player 10.2.152

  • Adobe Flash Player 10.2.152.32

  • Adobe Flash Player 10.2.152.33

  • Adobe Flash Player 10.2.154.13

  • Adobe Flash Player 10.2.154.25

  • Adobe Flash Player 10.2.156.12

  • Adobe Flash Player 10.2.157.51

  • Adobe Flash Player 10.2.159.1

  • Adobe Flash Player 10.3.181.14

  • Adobe Flash Player 10.3.181.16

  • Adobe Flash Player 10.3.181.22

  • Adobe Flash Player 10.3.181.23

  • Adobe Flash Player 10.3.181.26

  • Adobe Flash Player 10.3.181.34

  • Adobe Flash Player 10.3.181.36

  • Adobe Flash Player 10.3.183.10

  • Adobe Flash Player 10.3.183.5

  • Adobe Flash Player 10.3.183.7

  • Adobe Flash Player 10.3.185.25

  • Adobe Flash Player 11.0

  • Adobe Flash Player 11.0.1.152

  • Adobe Flash Player 11.0.1.153

  • Adobe Flash Player 11.1

  • Adobe Flash Player 6.0.21.0

  • Adobe Flash Player 6.0.79

  • Adobe Flash Player 7

  • Adobe Flash Player 7.0

  • Adobe Flash Player 7.0.1

  • Adobe Flash Player 7.0.14.0

  • Adobe Flash Player 7.0.19.0

  • Adobe Flash Player 7.0.24.0

  • Adobe Flash Player 7.0.25

  • Adobe Flash Player 7.0.53.0

  • Adobe Flash Player 7.0.60.0

  • Adobe Flash Player 7.0.61.0

  • Adobe Flash Player 7.0.63

  • Adobe Flash Player 7.0.66.0

  • Adobe Flash Player 7.0.67.0

  • Adobe Flash Player 7.0.68.0

  • Adobe Flash Player 7.0.69.0

  • Adobe Flash Player 7.0.70.0

  • Adobe Flash Player 7.0.73.0

  • Adobe Flash Player 7.1

  • Adobe Flash Player 7.1.1

  • Adobe Flash Player 7.2

  • Adobe Flash Player 8

  • Adobe Flash Player 8.0

  • Adobe Flash Player 8.0.22.0

  • Adobe Flash Player 8.0.24.0

  • Adobe Flash Player 8.0.33.0

  • Adobe Flash Player 8.0.34.0

  • Adobe Flash Player 8.0.35.0

  • Adobe Flash Player 8.0.39.0

  • Adobe Flash Player 8.0.42.0

  • Adobe Flash Player 9

  • Adobe Flash Player 9.0.112.0

  • Adobe Flash Player 9.0.114.0

  • Adobe Flash Player 9.0.115.0

  • Adobe Flash Player 9.0.124.0

  • Adobe Flash Player 9.0.125.0

  • Adobe Flash Player 9.0.151.0

  • Adobe Flash Player 9.0.152.0

  • Adobe Flash Player 9.0.155.0

  • Adobe Flash Player 9.0.159.0

  • Adobe Flash Player 9.0.16

  • Adobe Flash Player 9.0.18d60

  • Adobe Flash Player 9.0.20

  • Adobe Flash Player 9.0.20.0

  • Adobe Flash Player 9.0.246.0

  • Adobe Flash Player 9.0.260.0

  • Adobe Flash Player 9.0.262.0

  • Adobe Flash Player 9.0.277.0

  • Adobe Flash Player 9.0.28

  • Adobe Flash Player 9.0.28.0

  • Adobe Flash Player 9.0.283.0

  • Adobe Flash Player 9.0.31

  • Adobe Flash Player 9.0.31.0

  • Adobe Flash Player 9.0.45.0

  • Adobe Flash Player 9.0.47.0

  • Adobe Flash Player 9.0.48.0

  • Adobe Flash Player 9.125.0


References

CONFIRM - http://www.adobe.com/support/security/bulletins/apsb11-28.html

SUSE - SUSE-SA:2011:043

SUSE - SUSE-SU-2011:1244

SUSE - openSUSE-SU-2011:1240

GENTOO - GLSA-201204-07

SECUNIA - 48819

Related Patches

Adobe APSB11-28 AIR 3.1.0.4880 for Windows (Update) (All Languages)

Adobe APSB11-28 Flash Player 11.1.102.55 (Internet Explorer) for Windows (Update) (All Languages)

Adobe APSB11-28 Flash Player 11.1.102.55 (Other Browsers) for Windows (Update) (All Languages)

Adobe APSB11-28 Flash Player 11.1.102.55 (Other Browsers) for Windows (Update) (64Bit) (All Languages)

Adobe APSB11-28 Flash Player 11.1.102.55 (Internet Explorer) for Windows (Update) (64Bit) (All Languages)

Adobe APSB11-28 Flash Player 10.3.183.11 for Mac OS X (Update)

Adobe APSB11-28 Flash Player 11.1.102.55 for Mac OS X (Update) (Rev 2)

Adobe APSB11-28 Flash Player 10.3.183.11 (Internet Explorer) for Windows (Update) (All Languages)

Adobe APSB11-28 Flash Player 10.3.183.11 (Other Browsers) for Windows (Update) (All Languages)

Novell SUSE 2011:5413 flash-player security update for SLED 11 SP1 i586

Novell SUSE 2011:5413 flash-player security update for SLED 11 SP1 x86_64

Novell SUSE 2011:7832 flash-player security update for SLED 10 SP4 i586

Novell SUSE 2011:7832 flash-player security update for SLED 10 SP4 x86_64


Last Updated: 27 May 2016 10:57:59