CVE-2010-2163: Code Injection
First published: Tue Jun 15 2010(Updated: )
Multiple unspecified vulnerabilities in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unknown vectors.
Credit: psirt@adobe.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Adobe Acrobat Reader | =9.0.16 | |
| Adobe Acrobat Reader | =9.0.20 | |
| Adobe Acrobat Reader | =9.0.20.0 | |
| Adobe Acrobat Reader | =9.0.28 | |
| Adobe Acrobat Reader | =9.0.28.0 | |
| Adobe Acrobat Reader | =9.0.31 | |
| Adobe Acrobat Reader | =9.0.31.0 | |
| Adobe Acrobat Reader | =9.0.45.0 | |
| Adobe Acrobat Reader | =9.0.47.0 | |
| Adobe Acrobat Reader | =9.0.48.0 | |
| Adobe Acrobat Reader | =9.0.115.0 | |
| Adobe Acrobat Reader | =9.0.124.0 | |
| Adobe Acrobat Reader | =9.0.125.0 | |
| Adobe Acrobat Reader | =9.0.151.0 | |
| Adobe Acrobat Reader | =9.0.152.0 | |
| Adobe Acrobat Reader | =9.0.159.0 | |
| Adobe Acrobat Reader | =9.0.246.0 | |
| Adobe Acrobat Reader | =9.0.260.0 | |
| Adobe Acrobat Reader | =9.0.262.0 | |
| Adobe Acrobat Reader | <=10.0.45.2 | |
| Adobe Acrobat Reader | =10.0.0.584 | |
| Adobe Acrobat Reader | =10.0.12.10 | |
| Adobe Acrobat Reader | =10.0.12.36 | |
| Adobe Acrobat Reader | =10.0.15.3 | |
| Adobe Acrobat Reader | =10.0.22.87 | |
| Adobe Acrobat Reader | =10.0.32.18 | |
| Adobe Acrobat Reader | =10.0.42.34 | |
| Adobe Acrobat Reader | =6.0.79 | |
| Adobe Acrobat Reader | =7.0 | |
| Adobe Acrobat Reader | =7.0.1 | |
| Adobe Acrobat Reader | =7.0.14.0 | |
| Adobe Acrobat Reader | =7.0.19.0 | |
| Adobe Acrobat Reader | =7.0.24.0 | |
| Adobe Acrobat Reader | =7.0.25 | |
| Adobe Acrobat Reader | =7.0.53.0 | |
| Adobe Acrobat Reader | =7.0.60.0 | |
| Adobe Acrobat Reader | =7.0.61.0 | |
| Adobe Acrobat Reader | =7.0.63 | |
| Adobe Acrobat Reader | =7.0.66.0 | |
| Adobe Acrobat Reader | =7.0.67.0 | |
| Adobe Acrobat Reader | =7.0.68.0 | |
| Adobe Acrobat Reader | =7.0.69.0 | |
| Adobe Acrobat Reader | =7.0.70.0 | |
| Adobe Acrobat Reader | =7.0.73.0 | |
| Adobe Acrobat Reader | =7.1 | |
| Adobe Acrobat Reader | =7.1.1 | |
| Adobe Acrobat Reader | =7.2 | |
| Adobe Acrobat Reader | =8.0 | |
| Adobe Acrobat Reader | =8.0.22.0 | |
| Adobe Acrobat Reader | =8.0.24.0 | |
| Adobe Acrobat Reader | =8.0.33.0 | |
| Adobe Acrobat Reader | =8.0.34.0 | |
| Adobe Acrobat Reader | =8.0.35.0 | |
| Adobe Acrobat Reader | =8.0.39.0 | |
| Adobe Acrobat Reader | =8.0.42.0 | |
| Adobe Flash Player | =5.0 | |
| Adobe Flash Player | =5.0.30.0 | |
| Adobe Flash Player | =5.0.41.0 | |
| Adobe Flash Player | =5.0.42.0 | |
| Adobe Flash Player | =5.0.58.0 | |
| Adobe AIR SDK | <=1.5.3.9130 | |
| Adobe AIR SDK | =1.0 | |
| Adobe AIR SDK | =1.1 | |
| Adobe AIR SDK | =1.5 | |
| Adobe AIR SDK | =1.5.1 | |
| Adobe AIR SDK | =1.5.2 | |
| Adobe AIR SDK | =1.5.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://securitytracker.com/id?1024085
- http://www.adobe.com/support/security/bulletins/apsb10-14.html
- http://www.securityfocus.com/bid/40759
- http://securitytracker.com/id?1024086
- http://www.us-cert.gov/cas/techalerts/TA10-162A.html
- http://www.securityfocus.com/bid/40803
- http://www.vupen.com/english/advisories/2010/1453
- http://www.redhat.com/support/errata/RHSA-2010-0470.html
- http://www.redhat.com/support/errata/RHSA-2010-0464.html
- http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html
- http://www.vupen.com/english/advisories/2010/1482
- http://www.vupen.com/english/advisories/2010/1421
- http://www.vupen.com/english/advisories/2010/1432
- http://secunia.com/advisories/40144
- http://www.vupen.com/english/advisories/2010/1434
- http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00000.html
- http://www.vupen.com/english/advisories/2010/1522
- http://www.turbolinux.co.jp/security/2010/TLSA-2010-19j.txt
- http://secunia.com/advisories/40545
- http://www.vupen.com/english/advisories/2010/1793
- http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751
- http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html
- http://support.apple.com/kb/HT4435
- http://security.gentoo.org/glsa/glsa-201101-09.xml
- http://secunia.com/advisories/43026
- http://www.vupen.com/english/advisories/2011/0192
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7501
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16316
Frequently Asked Questions
What is the severity of CVE-2010-2163?
CVE-2010-2163 is considered a critical vulnerability due to the potential for arbitrary code execution by attackers.
How do I fix CVE-2010-2163?
To fix CVE-2010-2163, users should update to the latest version of Adobe Flash Player or Adobe AIR that is no longer affected by this vulnerability.
What versions of Adobe Flash Player are affected by CVE-2010-2163?
CVE-2010-2163 affects Adobe Flash Player versions prior to 9.0.277.0 and versions in the 10.x series before 10.1.53.64.
Which Adobe AIR versions are impacted by CVE-2010-2163?
CVE-2010-2163 impacts Adobe AIR versions before 2.0.2.12610.
What type of attacks can exploit CVE-2010-2163?
CVE-2010-2163 can be exploited through multiple unspecified vectors, potentially leading to remote code execution.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/weakness
- agent/author
- agent/remedy
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/adobe
- canonical/adobe acrobat reader
- version/adobe acrobat reader/9.0.16
- version/adobe acrobat reader/9.0.20
- version/adobe acrobat reader/9.0.20.0
- version/adobe acrobat reader/9.0.28
- version/adobe acrobat reader/9.0.28.0
- version/adobe acrobat reader/9.0.31
- version/adobe acrobat reader/9.0.31.0
- version/adobe acrobat reader/9.0.45.0
- version/adobe acrobat reader/9.0.47.0
- version/adobe acrobat reader/9.0.48.0
- version/adobe acrobat reader/9.0.115.0
- version/adobe acrobat reader/9.0.124.0
- version/adobe acrobat reader/9.0.125.0
- version/adobe acrobat reader/9.0.151.0
- version/adobe acrobat reader/9.0.152.0
- version/adobe acrobat reader/9.0.159.0
- version/adobe acrobat reader/9.0.246.0
- version/adobe acrobat reader/9.0.260.0
- version/adobe acrobat reader/9.0.262.0
- version/adobe acrobat reader/10.0.45.2
- version/adobe acrobat reader/10.0.0.584
- version/adobe acrobat reader/10.0.12.10
- version/adobe acrobat reader/10.0.12.36
- version/adobe acrobat reader/10.0.15.3
- version/adobe acrobat reader/10.0.22.87
- version/adobe acrobat reader/10.0.32.18
- version/adobe acrobat reader/10.0.42.34
- version/adobe acrobat reader/6.0.79
- version/adobe acrobat reader/7.0
- version/adobe acrobat reader/7.0.1
- version/adobe acrobat reader/7.0.14.0
- version/adobe acrobat reader/7.0.19.0
- version/adobe acrobat reader/7.0.24.0
- version/adobe acrobat reader/7.0.25
- version/adobe acrobat reader/7.0.53.0
- version/adobe acrobat reader/7.0.60.0
- version/adobe acrobat reader/7.0.61.0
- version/adobe acrobat reader/7.0.63
- version/adobe acrobat reader/7.0.66.0
- version/adobe acrobat reader/7.0.67.0
- version/adobe acrobat reader/7.0.68.0
- version/adobe acrobat reader/7.0.69.0
- version/adobe acrobat reader/7.0.70.0
- version/adobe acrobat reader/7.0.73.0
- version/adobe acrobat reader/7.1
- version/adobe acrobat reader/7.1.1
- version/adobe acrobat reader/7.2
- version/adobe acrobat reader/8.0
- version/adobe acrobat reader/8.0.22.0
- version/adobe acrobat reader/8.0.24.0
- version/adobe acrobat reader/8.0.33.0
- version/adobe acrobat reader/8.0.34.0
- version/adobe acrobat reader/8.0.35.0
- version/adobe acrobat reader/8.0.39.0
- version/adobe acrobat reader/8.0.42.0
- vendor/macromedia
- canonical/adobe flash player
- version/adobe flash player/5.0
- version/adobe flash player/5.0.30.0
- version/adobe flash player/5.0.41.0
- version/adobe flash player/5.0.42.0
- version/adobe flash player/5.0.58.0
- canonical/adobe air sdk
- version/adobe air sdk/1.5.3.9130
- version/adobe air sdk/1.0
- version/adobe air sdk/1.1
- version/adobe air sdk/1.5
- version/adobe air sdk/1.5.1
- version/adobe air sdk/1.5.2
- version/adobe air sdk/1.5.3