CVE-2010-3648
First published: Sun Nov 07 2010(Updated: )
Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, a different vulnerability than CVE-2010-3640, CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644, CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3649, CVE-2010-3650, and CVE-2010-3652.
Credit: psirt@adobe.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| Any of | ||
| Macromedia Flash Player | >=9.0<9.0.289.0 | |
| Macromedia Flash Player | >=10.0<10.1.102.64 | |
| Any of | ||
| Apple iOS and macOS | ||
| Linux kernel | ||
| Microsoft Windows | ||
| Oracle Solaris SPARC | ||
| All of | ||
| Macromedia Flash Player | <=10.1.95.1 | |
| Android | ||
| Macromedia Flash Player | >=9.0<9.0.289.0 | |
| Macromedia Flash Player | >=10.0<10.1.102.64 | |
| Apple iOS and macOS | ||
| Linux | ||
| Microsoft Windows | ||
| Oracle Solaris SPARC | ||
| Macromedia Flash Player | <=10.1.95.1 | |
| Android |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.adobe.com/support/security/bulletins/apsb10-26.html
- http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html
- http://support.apple.com/kb/HT4435
- http://www.securityfocus.com/bid/44684
- http://www.vupen.com/english/advisories/2010/2903
- http://www.redhat.com/support/errata/RHSA-2010-0834.html
- http://www.vupen.com/english/advisories/2010/2918
- http://www.vupen.com/english/advisories/2010/2906
- http://www.redhat.com/support/errata/RHSA-2010-0829.html
- http://secunia.com/advisories/42183
- http://www.redhat.com/support/errata/RHSA-2010-0867.html
- http://secunia.com/advisories/42926
- http://blogs.sun.com/security/entry/multiple_vulnerabilities_in_adobe_flash1
- http://security.gentoo.org/glsa/glsa-201101-09.xml
- http://www.vupen.com/english/advisories/2011/0173
- http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00002.html
- http://www.vupen.com/english/advisories/2011/0192
- http://secunia.com/advisories/43026
- http://marc.info/?l=bugtraq&m=130331642631603&w=2
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15980
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11842
Frequently Asked Questions
What is the severity of CVE-2010-3648?
CVE-2010-3648 has been classified as a critical vulnerability due to its potential for arbitrary code execution and denial of service.
How do I fix CVE-2010-3648?
To mitigate CVE-2010-3648, update Adobe Flash Player to version 10.1.102.64 or newer if you are on a 10.x version.
Which versions of Adobe Flash Player are affected by CVE-2010-3648?
CVE-2010-3648 affects Adobe Flash Player versions prior to 9.0.289.0 and 10.x prior to 10.1.102.64.
What platforms are impacted by CVE-2010-3648?
CVE-2010-3648 impacts Adobe Flash Player on Windows, Mac OS X, Linux, Solaris, and Android platforms.
What types of attacks are possible with CVE-2010-3648?
CVE-2010-3648 can allow attackers to execute arbitrary code or cause a denial of service through memory corruption.
- collector/nvd-historical
- agent/type
- agent/event
- agent/first-publish-date
- agent/references
- agent/last-modified-date
- agent/remedy
- agent/weakness
- agent/severity
- agent/description
- agent/source
- agent/author
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/adobe
- canonical/macromedia flash player
- version/macromedia flash player/9.0
- version/macromedia flash player/10.0
- vendor/apple
- canonical/apple ios and macos
- vendor/linux
- canonical/linux kernel
- vendor/microsoft
- canonical/microsoft windows
- vendor/sun
- canonical/oracle solaris sparc
- version/macromedia flash player/10.1.95.1
- vendor/google
- canonical/android
- canonical/linux