Back to search
CVE-2010-3636
Published: Nov 7, 2010
Modified: Aug 7, 2024
PUBLISHED
Description
Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, does not properly handle unspecified encodings during the parsing of a cross-domain policy file, which allows remote web servers to bypass intended access restrictions via unknown vectors.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
ADV-2011-0192
vdb-entry
x_refsource_VUPEN
42183
third-party-advisory
x_refsource_SECUNIA
http://support.apple.com/kb/HT4435
x_refsource_CONFIRM
http://blogs.sun.com/security/entry/multiple_vulnerabilities_in_adobe_flash1
x_refsource_CONFIRM
43026
third-party-advisory
x_refsource_SECUNIA
GLSA-201101-09
vendor-advisory
x_refsource_GENTOO
ADV-2010-2918
vdb-entry
x_refsource_VUPEN
44691
vdb-entry
x_refsource_BID
APPLE-SA-2010-11-10-1
vendor-advisory
x_refsource_APPLE
JVNDB-2010-000054
third-party-advisory
x_refsource_JVNDB
RHSA-2010:0834
vendor-advisory
x_refsource_REDHAT
SUSE-SA:2010:055
vendor-advisory
x_refsource_SUSE
42926
third-party-advisory
x_refsource_SECUNIA
SSRT100428
vendor-advisory
x_refsource_HP
ADV-2010-2903
vdb-entry
x_refsource_VUPEN
HPSBMA02663
vendor-advisory
x_refsource_HP
ADV-2011-0173
vdb-entry
x_refsource_VUPEN
JVN#48425028
third-party-advisory
x_refsource_JVN
oval:org.mitre.oval:def:15913
vdb-entry
signature
x_refsource_OVAL
http://www.adobe.com/support/security/bulletins/apsb10-26.html
x_refsource_CONFIRM
oval:org.mitre.oval:def:12142
vdb-entry
signature
x_refsource_OVAL
ADV-2010-2906
vdb-entry
x_refsource_VUPEN
RHSA-2010:0867
vendor-advisory
x_refsource_REDHAT
RHSA-2010:0829
vendor-advisory
x_refsource_REDHAT
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now