Oval Definition:oval:org.mitre.oval:def:7116
Revision Date:2015-08-03Version:65
Title:Adobe Flash Player, Acrobat Reader, and Acrobat 'authplay.dll' Remote Code Execution Vulnerability
Description:Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64; Adobe AIR before 2.0.2.12610; and Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Windows and Mac OS X, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted SWF content, related to authplay.dll and the ActionScript Virtual Machine 2 (AVM2) newfunction instruction, as exploited in the wild in June 2010.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2010-1297
Platform(s):Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows 8.1
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows Vista
Microsoft Windows XP
Product(s):Adobe Acrobat
Adobe Flash Player
Adobe Reader
Definition Synopsis
  • Vulnerable version of Adobe Flash Player
  • Adobe Flash Player before 9.0.277.0 installed
  • Adobe Flash Player is installed
  • AND Adobe Flash Player version installed on the system is less than 9.0.277.0
  • OR Adobe Flash Player 10.x through 10.0.45.2 installed
  • Adobe Flash Player 10 is installed
  • AND Adobe Flash Player version installed on the system is less than or equal 10.0.45.2
  • OR Adobe Reader 8
  • Adobe Reader 8 Series is installed
  • AND Adobe Reader 8, the sub-version is vulnerable
  • Adobe Reader is less than 8.2.3
  • OR Adobe Reader library is less than 8.2.3
  • OR Adobe Reader 9
  • Adobe Reader 9 Series is installed
  • AND Adobe Reader 9, the sub-version is vulnerable
  • Adobe Reader is less than 9.3.3
  • OR Adobe Reader library is less than 9.3.3
  • OR Adobe Acrobat 8
  • Adobe Acrobat 8 Series is installed
  • AND Adobe Acrobat 8, the sub-version is vulnerable
  • Adobe Acrobat is less than 8.2.3
  • OR Adobe Acrobat library is less than 8.2.3
  • OR Adobe Acrobat 9
  • Adobe Acrobat 9 Series is installed
  • AND Adobe Acrobat 9, the sub-version is vulnerable
  • Adobe Acrobat is less than 9.3.3
  • OR Adobe Acrobat library is less than 9.3.3
  • OR Flash.ocx section
  • ActiveX Control is installed
  • AND Flash.ocx versions section
  • Flash.ocx 10 section
  • Determine if the version of Flash.ocx is less than or equal 10.0.45.2
  • AND Determine if the version of Flash.ocx is greater than or equal 10.0
  • OR Flash.ocx 9 section
  • Determine if the version of Flash.ocx is less than 9.0.277.0
  • AND Determine if the version of Flash.ocx is greater than or equal 9.0
    • BACK