CVE-2010-3646
First published: Sun Nov 07 2010(Updated: )
Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3647, CVE-2010-3648, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652.
Credit: psirt@adobe.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| Any of | ||
| Macromedia Flash Player | >=9.0<9.0.289.0 | |
| Macromedia Flash Player | >=10.0<10.1.102.64 | |
| Any of | ||
| Apple iOS and macOS | ||
| Linux Kernel | ||
| Microsoft Windows Operating System | ||
| Oracle Solaris and Zettabyte File System (ZFS) | ||
| All of | ||
| Macromedia Flash Player | <=10.1.95.1 | |
| Android | ||
| Macromedia Flash Player | >=9.0<9.0.289.0 | |
| Macromedia Flash Player | >=10.0<10.1.102.64 | |
| Apple iOS and macOS | ||
| Linux | ||
| Microsoft Windows Operating System | ||
| Oracle Solaris and Zettabyte File System (ZFS) | ||
| Macromedia Flash Player | <=10.1.95.1 | |
| Android |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.adobe.com/support/security/bulletins/apsb10-26.html
- http://support.apple.com/kb/HT4435
- http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html
- http://www.vupen.com/english/advisories/2010/2906
- http://www.securityfocus.com/bid/44682
- http://www.vupen.com/english/advisories/2010/2903
- http://secunia.com/advisories/42183
- http://www.redhat.com/support/errata/RHSA-2010-0834.html
- http://www.redhat.com/support/errata/RHSA-2010-0829.html
- http://www.vupen.com/english/advisories/2010/2918
- http://www.redhat.com/support/errata/RHSA-2010-0867.html
- http://secunia.com/advisories/42926
- http://blogs.sun.com/security/entry/multiple_vulnerabilities_in_adobe_flash1
- http://www.vupen.com/english/advisories/2011/0173
- http://security.gentoo.org/glsa/glsa-201101-09.xml
- http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00002.html
- http://secunia.com/advisories/43026
- http://www.vupen.com/english/advisories/2011/0192
- http://marc.info/?l=bugtraq&m=130331642631603&w=2
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16183
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11922
Frequently Asked Questions
What is the severity of CVE-2010-3646?
CVE-2010-3646 is considered a critical vulnerability allowing attackers to execute arbitrary code or cause a denial of service.
How do I fix CVE-2010-3646?
To fix CVE-2010-3646, update Adobe Flash Player to version 10.1.102.64 or later.
Which versions of software are affected by CVE-2010-3646?
CVE-2010-3646 affects Adobe Flash Player versions prior to 9.0.289.0 and 10.x versions before 10.1.102.64.
Can CVE-2010-3646 be exploited remotely?
Yes, CVE-2010-3646 can be exploited remotely through unknown vectors.
Is there a risk of denial of service with CVE-2010-3646?
Yes, CVE-2010-3646 poses a risk of denial of service due to memory corruption.
- collector/nvd-historical
- agent/type
- agent/event
- agent/first-publish-date
- agent/remedy
- agent/severity
- agent/references
- agent/weakness
- agent/last-modified-date
- agent/description
- agent/source
- agent/author
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- vendor/adobe
- canonical/macromedia flash player
- version/macromedia flash player/9.0
- version/macromedia flash player/10.0
- vendor/apple
- canonical/apple ios and macos
- vendor/linux
- canonical/linux kernel
- vendor/microsoft
- canonical/microsoft windows operating system
- vendor/sun
- canonical/oracle solaris and zettabyte file system (zfs)
- version/macromedia flash player/10.1.95.1
- vendor/google
- canonical/android
- canonical/linux