Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (heap memory corruption) or possibly execute arbitrary code via vectors related to improper length calculation and the (1) STSC, (2) STSZ, and (3) STCO atoms.
References
Link Providers
http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751 cve-icon cve-icon
http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html cve-icon cve-icon
http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00000.html cve-icon cve-icon
http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html cve-icon cve-icon
http://secunia.com/advisories/40144 cve-icon cve-icon
http://secunia.com/advisories/40545 cve-icon cve-icon
http://secunia.com/advisories/43026 cve-icon cve-icon
http://security.gentoo.org/glsa/glsa-201101-09.xml cve-icon cve-icon
http://securitytracker.com/id?1024085 cve-icon cve-icon
http://securitytracker.com/id?1024086 cve-icon cve-icon
http://support.apple.com/kb/HT4435 cve-icon cve-icon
http://www.adobe.com/support/security/bulletins/apsb10-14.html cve-icon cve-icon
http://www.redhat.com/support/errata/RHSA-2010-0464.html cve-icon cve-icon
http://www.redhat.com/support/errata/RHSA-2010-0470.html cve-icon cve-icon
http://www.securityfocus.com/archive/1/511862/100/0/threaded cve-icon cve-icon
http://www.securityfocus.com/bid/40759 cve-icon cve-icon
http://www.securityfocus.com/bid/40801 cve-icon cve-icon
http://www.turbolinux.co.jp/security/2010/TLSA-2010-19j.txt cve-icon cve-icon
http://www.us-cert.gov/cas/techalerts/TA10-162A.html cve-icon cve-icon
http://www.vupen.com/english/advisories/2010/1421 cve-icon cve-icon
http://www.vupen.com/english/advisories/2010/1432 cve-icon cve-icon
http://www.vupen.com/english/advisories/2010/1434 cve-icon cve-icon
http://www.vupen.com/english/advisories/2010/1453 cve-icon cve-icon
http://www.vupen.com/english/advisories/2010/1482 cve-icon cve-icon
http://www.vupen.com/english/advisories/2010/1522 cve-icon cve-icon
http://www.vupen.com/english/advisories/2010/1793 cve-icon cve-icon
http://www.vupen.com/english/advisories/2011/0192 cve-icon cve-icon
http://www.zerodayinitiative.com/advisories/ZDI-10-109 cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2010-2162 cve-icon
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16345 cve-icon cve-icon
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7166 cve-icon cve-icon
https://www.cve.org/CVERecord?id=CVE-2010-2162 cve-icon
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: adobe

Published: 2010-06-15T17:48:00

Updated: 2024-08-07T02:25:06.993Z

Reserved: 2010-06-07T00:00:00

Link: CVE-2010-2162

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2010-06-15T18:00:01.203

Modified: 2024-11-21T01:16:03.413

Link: CVE-2010-2162

cve-icon Redhat

Severity : Critical

Publid Date: 2010-06-10T00:00:00Z

Links: CVE-2010-2162 - Bugzilla