CVE-2010-2164 — HIGH (9.3) — White Hats Nepal

Q: How severe is CVE-2010-2164?

CVE-2010-2164 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2010-2164?

Check the references section above for vendor advisories and patch information. Affected products include: Adobe Flash Player, Macromedia Flash Player, Adobe Air.

Vulnerability Description

Use-after-free vulnerability in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors related to an unspecified "image type within a certain function."

CVSS Score

9.3

HIGH

AV:N/AC:M/Au:N/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Adobe	Flash Player	9.0.16
Macromedia	Flash Player	5.0
Adobe	Air	<= 1.5.3.9130

Related Weaknesses (CWE)

CWE-399

References

FAQ

What is CVE-2010-2164?

CVE-2010-2164 is a vulnerability with a CVSS score of 9.3 (HIGH). Use-after-free vulnerability in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vector...

How severe is CVE-2010-2164?

CVE-2010-2164 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2010-2164?

Check the references section above for vendor advisories and patch information. Affected products include: Adobe Flash Player, Macromedia Flash Player, Adobe Air.