SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

[Forgot Password]

Paid content will be excluded from the download.

Download | Alert*

CVE

CVE-2011-0577

Date: (C)2011-02-10 (M)2023-12-22

Unspecified vulnerability in Adobe Flash Player before 10.2.152.26 allows remote attackers to execute arbitrary code via a crafted font.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 9.3
Exploit Score: 8.6
Impact Score: 10.0

CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE

Reference:

SECTRACK-1025055

SUSE-SA:2011:009

adobe-fontprasing-code-execution(65239)

http://blogs.sun.com/security/entry/multiple_vulnerabilities_in_adobe_flash2

http://www.adobe.com/support/security/bulletins/apsb11-02.html

oval:org.mitre.oval:def:14164

oval:org.mitre.oval:def:15754

cpe:/a:adobe:flash_player:10.1.53.64
cpe:/a:adobe:flash_player:7.0.60.0
cpe:/a:adobe:flash_player:9.0.125.0
cpe:/a:adobe:flash_player:10.0.15.3
...

oval:org.secpod.oval:def:232
oval:org.secpod.oval:def:5971
oval:org.secpod.oval:def:5970
oval:org.secpod.oval:def:5979
...

© SecPod Technologies