FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2010-0186

This CVE name corresponds to:

Entered Topic
2010-02-13 linux-flashplugin -- multiple vulnerabilities

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

Details

Type Candidate
Name CVE-2010-0186
Phase Assigned(20100106)

Description

Cross-domain vulnerability in Adobe Flash Player before 10.0.45.2, Adobe AIR before 1.5.3.9130, and Adobe Reader and Acrobat 8.x before 8.2.1 and 9.x before 9.3.1 allows remote attackers to bypass intended sandbox restrictions and make cross-domain requests via unspecified vectors.

References

Source Reference
CONFIRM http://www.adobe.com/support/security/bulletins/apsb10-06.html
CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=563819
CONFIRM http://www.adobe.com/support/security/bulletins/apsb10-07.html
CONFIRM http://support.apple.com/kb/HT4188
APPLE APPLE-SA-2010-06-15-1
GENTOO GLSA-201101-09
REDHAT RHSA-2010:0102
REDHAT RHSA-2010:0103
REDHAT RHSA-2010:0114
SUSE SUSE-SR:2010:006
BID 38198
OSVDB 62300
OVAL oval:org.mitre.oval:def:8518
SECTRACK 1023585
SECUNIA 38547
SECUNIA 38639
SECUNIA 38915
SECUNIA 40220
SECUNIA 43026
VUPEN ADV-2010-1481
VUPEN ADV-2011-0192