Exploited
critical
9.3
CWE
119 843
Advisory Published
Updated

CVE-2011-0611: Adobe Flash Player Remote Code Execution Vulnerability

First published: Wed Apr 13 2011(Updated: )

Adobe Flash Player before 10.2.154.27 on Windows, Mac OS X, Linux, and Solaris and 10.2.156.12 and earlier on Android; Adobe AIR before 2.6.19140; and Authplay.dll (aka AuthPlayLib.bundle) in Adobe Reader 9.x before 9.4.4 and 10.x through 10.0.1 on Windows, Adobe Reader 9.x before 9.4.4 and 10.x before 10.0.3 on Mac OS X, and Adobe Acrobat 9.x before 9.4.4 and 10.x before 10.0.3 on Windows and Mac OS X allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted Flash content; as demonstrated by a Microsoft Office document with an embedded .swf file that has a size inconsistency in a "group of included constants," object type confusion, ActionScript that adds custom functions to prototypes, and Date objects; and as exploited in the wild in April 2011.

Credit: psirt@adobe.com psirt@adobe.com

Affected SoftwareAffected VersionHow to fix
Macromedia Flash Player
Adobe=1.0
Adobe=1.5
Adobe=1.5.3
Adobe=1.5.2
Adobe=2.0.2
Adobe=2.0.3
Adobe=2.0.4
Adobe=1.1
Adobe<=2.6
All of
Macromedia Flash Player<10.2.154.27
Any of
Apple iOS and macOS
Linux Kernel
Microsoft Windows Operating System
Oracle Solaris and Zettabyte File System (ZFS)
All of
Macromedia Flash Player<=10.2.156.12
Android
All of
Any of
Adobe Acrobat Reader Notification Manager>=9.0<9.4.4
Adobe Acrobat Reader Notification Manager>=10.0<=10.0.1
Microsoft Windows Operating System
Adobe<2.6.19140
All of
Any of
Adobe Acrobat Reader Notification Manager>=9.0<9.4.4
Adobe Acrobat Reader Notification Manager>=10.0<10.0.3
Apple iOS and macOS
All of
Any of
Adobe Acrobat Reader>=9.0<9.4
Adobe Acrobat Reader>=10.0<10.0.3
Any of
Apple iOS and macOS
Microsoft Windows Operating System
All of
Google Chrome<10.0.648.205
Any of
Apple iOS and macOS
Chrome OS
Linux Kernel
Microsoft Windows Operating System
openSUSE=11.2
openSUSE=11.3
openSUSE=11.4
SUSE Linux Enterprise Desktop=10-sp4
SUSE Linux Enterprise Desktop=11-sp1
Macromedia Flash Player<=10.2.154.25
Macromedia Flash Player=6.0.21.0
Macromedia Flash Player=6.0.79
Macromedia Flash Player=7.0
Macromedia Flash Player=7.0.1
Macromedia Flash Player=7.0.14.0
Macromedia Flash Player=7.0.19.0
Macromedia Flash Player=7.0.24.0
Macromedia Flash Player=7.0.25
Macromedia Flash Player=7.0.53.0
Macromedia Flash Player=7.0.60.0
Macromedia Flash Player=7.0.61.0
Macromedia Flash Player=7.0.63
Macromedia Flash Player=7.0.66.0
Macromedia Flash Player=7.0.67.0
Macromedia Flash Player=7.0.68.0
Macromedia Flash Player=7.0.69.0
Macromedia Flash Player=7.0.70.0
Macromedia Flash Player=7.0.73.0
Macromedia Flash Player=7.1
Macromedia Flash Player=7.1.1
Macromedia Flash Player=7.2
Macromedia Flash Player=8.0
Macromedia Flash Player=8.0.22.0
Macromedia Flash Player=8.0.24.0
Macromedia Flash Player=8.0.33.0
Macromedia Flash Player=8.0.34.0
Macromedia Flash Player=8.0.35.0
Macromedia Flash Player=8.0.39.0
Macromedia Flash Player=8.0.42.0
Macromedia Flash Player=9.0
Macromedia Flash Player=9.0.16
Macromedia Flash Player=9.0.18d60
Macromedia Flash Player=9.0.20
Macromedia Flash Player=9.0.20.0
Macromedia Flash Player=9.0.28
Macromedia Flash Player=9.0.28.0
Macromedia Flash Player=9.0.31
Macromedia Flash Player=9.0.31.0
Macromedia Flash Player=9.0.45.0
Macromedia Flash Player=9.0.47.0
Macromedia Flash Player=9.0.48.0
Macromedia Flash Player=9.0.112.0
Macromedia Flash Player=9.0.114.0
Macromedia Flash Player=9.0.115.0
Macromedia Flash Player=9.0.124.0
Macromedia Flash Player=9.0.125.0
Macromedia Flash Player=9.0.151.0
Macromedia Flash Player=9.0.152.0
Macromedia Flash Player=9.0.155.0
Macromedia Flash Player=9.0.159.0
Macromedia Flash Player=9.0.246.0
Macromedia Flash Player=9.0.260.0
Macromedia Flash Player=9.0.262.0
Macromedia Flash Player=9.0.277.0
Macromedia Flash Player=9.0.283.0
Macromedia Flash Player=9.125.0
Macromedia Flash Player=10.0.0.584
Macromedia Flash Player=10.0.12.10
Macromedia Flash Player=10.0.12.36
Macromedia Flash Player=10.0.15.3
Macromedia Flash Player=10.0.22.87
Macromedia Flash Player=10.0.32.18
Macromedia Flash Player=10.0.42.34
Macromedia Flash Player=10.0.45.2
Macromedia Flash Player=10.1.52.14.1
Macromedia Flash Player=10.1.52.15
Macromedia Flash Player=10.1.53.64
Macromedia Flash Player=10.1.82.76
Macromedia Flash Player=10.1.85.3
Macromedia Flash Player=10.1.92.8
Macromedia Flash Player=10.1.92.10
Macromedia Flash Player=10.1.95.1
Macromedia Flash Player=10.1.95.2
Macromedia Flash Player=10.1.102.64
Macromedia Flash Player=10.2.152
Macromedia Flash Player=10.2.152.32
Macromedia Flash Player=10.2.152.33
Macromedia Flash Player=10.2.154.13
Apple iOS and macOS
Linux Kernel
Microsoft Windows Operating System
Oracle Solaris and Zettabyte File System (ZFS)
Macromedia Flash Player<=10.2.156.12
Macromedia Flash Player=10.1.105.6
Macromedia Flash Player=10.1.106.16
Android
Adobe Acrobat Reader=9.0
Adobe Acrobat Reader=9.1
Adobe Acrobat Reader=9.1.1
Adobe Acrobat Reader=9.1.2
Adobe Acrobat Reader=9.1.3
Adobe Acrobat Reader=9.2
Adobe Acrobat Reader=9.3
Adobe Acrobat Reader=9.3.1
Adobe Acrobat Reader=9.3.2
Adobe Acrobat Reader=9.3.3
Adobe Acrobat Reader=9.3.4
Adobe Acrobat Reader=9.4
Adobe Acrobat Reader=9.4.1
Adobe Acrobat Reader=9.4.2
Adobe Acrobat Reader=9.4.3
Adobe Acrobat Reader=10.0
Adobe Acrobat Reader=10.0.1
Adobe Acrobat Reader=10.0.2
Adobe Acrobat Reader Notification Manager=9.0
Adobe Acrobat Reader Notification Manager=9.1
Adobe Acrobat Reader Notification Manager=9.1.1
Adobe Acrobat Reader Notification Manager=9.1.2
Adobe Acrobat Reader Notification Manager=9.1.3
Adobe Acrobat Reader Notification Manager=9.2
Adobe Acrobat Reader Notification Manager=9.3
Adobe Acrobat Reader Notification Manager=9.3.1
Adobe Acrobat Reader Notification Manager=9.3.2
Adobe Acrobat Reader Notification Manager=9.3.3
Adobe Acrobat Reader Notification Manager=9.3.4
Adobe Acrobat Reader Notification Manager=9.4
Adobe Acrobat Reader Notification Manager=9.4.1
Adobe Acrobat Reader Notification Manager=9.4.2
Adobe Acrobat Reader Notification Manager=9.4.3
Adobe Acrobat Reader Notification Manager=10.0
Adobe Acrobat Reader Notification Manager=10.0.1
Adobe Acrobat Reader Notification Manager=10.0.2

Remedy

The impacted product is end-of-life and should be disconnected if still in use.

Remedy

http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00004.html

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2011-0611?

    The CVE-2011-0611 vulnerability is rated as critical due to its potential for remote code execution.

  • How can I fix CVE-2011-0611?

    To fix CVE-2011-0611, users should update Adobe Flash Player and Adobe AIR to the latest versions released after the vulnerabilities were addressed.

  • Which Adobe products are affected by CVE-2011-0611?

    CVE-2011-0611 affects Adobe Flash Player, Adobe AIR, and older versions of Adobe Acrobat Reader.

  • What types of attacks can exploit CVE-2011-0611?

    CVE-2011-0611 can be exploited through malicious Flash content that may cause memory corruption and lead to arbitrary code execution.

  • When was CVE-2011-0611 disclosed?

    CVE-2011-0611 was disclosed in February 2011 as part of Adobe's security updates.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203