Oval Definition:oval:org.mitre.oval:def:8518
Revision Date:2015-08-03Version:62
Title:Adobe Flash Player, Acrobat, Adobe Reader and AIR Cross Domain Request Vulnerability
Description:Cross-domain vulnerability in Adobe Flash Player before 10.0.45.2, Adobe AIR before 1.5.3.9130, and Adobe Reader and Acrobat 8.x before 8.2.1 and 9.x before 9.3.1 allows remote attackers to bypass intended sandbox restrictions and make cross-domain requests via unspecified vectors.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2010-0186
Platform(s):Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows 8.1
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows Vista
Microsoft Windows XP
Product(s):Adobe Acrobat
Adobe AIR
Adobe Flash Player
Adobe Reader
Definition Synopsis
  • Vulnerable version of Adobe AIR
  • Adobe AIR is installed
  • AND Adobe AIR version is less than or equal 1.5.3.9120
  • OR Vulnerable version of Adobe Flash Player
  • Adobe Flash Player is installed
  • AND Adobe Flash Player version installed on the system is less than or equal 10.0.42.34
  • OR Adobe Reader 8
  • Adobe Reader 8 Series is installed
  • AND Adobe Reader 8, the sub-version is vulnerable
  • Adobe Reader is less than 8.2.1
  • OR Adobe Reader library is less than 8.2.1
  • OR Adobe Reader 9
  • Adobe Reader 9 Series is installed
  • AND Adobe Reader 9, the sub-version is vulnerable
  • Adobe Reader is less than 9.3.1
  • OR Adobe Reader library is less than 9.3.1
  • OR Adobe Acrobat 8
  • Adobe Acrobat 8 Series is installed
  • AND Adobe Acrobat 8, the sub-version is vulnerable
  • Adobe Acrobat is less than 8.2.1
  • OR Adobe Acrobat library is less than 8.2.1
  • OR Adobe Acrobat 9
  • Adobe Acrobat 9 Series is installed
  • AND Adobe Acrobat 9, the sub-version is vulnerable
  • Adobe Acrobat is less than 9.3.1
  • OR Adobe Acrobat library is less than 9.3.1
  • OR Flash.ocx section
  • ActiveX Control is installed
  • AND Determine if the version of Flash.ocx is less than or equal 10.0.42.34
    • BACK