CVE-2010-2179
Summary
| CVE | CVE-2010-2179 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2010-06-15 18:00:00 UTC |
| Updated | 2022-09-15 13:29:00 UTC |
| Description | Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, when Firefox or Chrome is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to URL parsing. |
Risk And Classification
Problem Types: CWE-79
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Adobe | Air | All | All | All | All |
| Application | Adobe | Air | 1.0 | All | All | All |
| Application | Adobe | Air | 1.1 | All | All | All |
| Application | Adobe | Air | 1.5 | All | All | All |
| Application | Adobe | Air | 1.5.1 | All | All | All |
| Application | Adobe | Air | 1.5.2 | All | All | All |
| Application | Adobe | Air | 1.5.3 | All | All | All |
| Application | Adobe | Air | 1.0 | All | All | All |
| Application | Adobe | Air | 1.1 | All | All | All |
| Application | Adobe | Air | 1.5 | All | All | All |
| Application | Adobe | Air | 1.5.1 | All | All | All |
| Application | Adobe | Air | 1.5.2 | All | All | All |
| Application | Adobe | Air | 1.5.3 | All | All | All |
| Application | Adobe | Air | All | All | All | All |
| Application | Adobe | Flash Player | All | All | All | All |
| Application | Adobe | Flash Player | 10.0.0.584 | All | All | All |
| Application | Adobe | Flash Player | 10.0.12.10 | All | All | All |
| Application | Adobe | Flash Player | 10.0.12.36 | All | All | All |
| Application | Adobe | Flash Player | 10.0.15.3 | All | All | All |
| Application | Adobe | Flash Player | 10.0.22.87 | All | All | All |
| Application | Adobe | Flash Player | 10.0.32.18 | All | All | All |
| Application | Adobe | Flash Player | 10.0.42.34 | All | All | All |
| Application | Adobe | Flash Player | 6.0.79 | All | All | All |
| Application | Adobe | Flash Player | 7.0 | All | All | All |
| Application | Adobe | Flash Player | 7.0.1 | All | All | All |
| Application | Adobe | Flash Player | 7.0.14.0 | All | All | All |
| Application | Adobe | Flash Player | 7.0.19.0 | All | All | All |
| Application | Adobe | Flash Player | 7.0.24.0 | All | All | All |
| Application | Adobe | Flash Player | 7.0.25 | All | All | All |
| Application | Adobe | Flash Player | 7.0.53.0 | All | All | All |
| Application | Adobe | Flash Player | 7.0.60.0 | All | All | All |
| Application | Adobe | Flash Player | 7.0.61.0 | All | All | All |
| Application | Adobe | Flash Player | 7.0.63 | All | All | All |
| Application | Adobe | Flash Player | 7.0.66.0 | All | All | All |
| Application | Adobe | Flash Player | 7.0.67.0 | All | All | All |
| Application | Adobe | Flash Player | 7.0.68.0 | All | All | All |
| Application | Adobe | Flash Player | 7.0.69.0 | All | All | All |
| Application | Adobe | Flash Player | 7.0.70.0 | All | All | All |
| Application | Adobe | Flash Player | 7.0.73.0 | All | All | All |
| Application | Adobe | Flash Player | 7.1 | All | All | All |
| Application | Adobe | Flash Player | 7.1.1 | All | All | All |
| Application | Adobe | Flash Player | 7.2 | All | All | All |
| Application | Adobe | Flash Player | 8.0 | All | All | All |
| Application | Adobe | Flash Player | 8.0.22.0 | All | All | All |
| Application | Adobe | Flash Player | 8.0.24.0 | All | All | All |
| Application | Adobe | Flash Player | 8.0.33.0 | All | All | All |
| Application | Adobe | Flash Player | 8.0.34.0 | All | All | All |
| Application | Adobe | Flash Player | 8.0.35.0 | All | All | All |
| Application | Adobe | Flash Player | 8.0.39.0 | All | All | All |
| Application | Adobe | Flash Player | 8.0.42.0 | All | All | All |
| Application | Adobe | Flash Player | 9.0.115.0 | All | All | All |
| Application | Adobe | Flash Player | 9.0.124.0 | All | All | All |
| Application | Adobe | Flash Player | 9.0.125.0 | All | All | All |
| Application | Adobe | Flash Player | 9.0.151.0 | All | All | All |
| Application | Adobe | Flash Player | 9.0.152.0 | All | All | All |
| Application | Adobe | Flash Player | 9.0.159.0 | All | All | All |
| Application | Adobe | Flash Player | 9.0.16 | All | All | All |
| Application | Adobe | Flash Player | 9.0.20 | All | All | All |
| Application | Adobe | Flash Player | 9.0.20.0 | All | All | All |
| Application | Adobe | Flash Player | 9.0.246.0 | All | All | All |
| Application | Adobe | Flash Player | 9.0.260.0 | All | All | All |
| Application | Adobe | Flash Player | 9.0.262.0 | All | All | All |
| Application | Adobe | Flash Player | 9.0.28 | All | All | All |
| Application | Adobe | Flash Player | 9.0.28.0 | All | All | All |
| Application | Adobe | Flash Player | 9.0.31 | All | All | All |
| Application | Adobe | Flash Player | 9.0.31.0 | All | All | All |
| Application | Adobe | Flash Player | 9.0.45.0 | All | All | All |
| Application | Adobe | Flash Player | 9.0.47.0 | All | All | All |
| Application | Adobe | Flash Player | 9.0.48.0 | All | All | All |
| Application | Adobe | Flash Player | 10.0.0.584 | All | All | All |
| Application | Adobe | Flash Player | 10.0.12.10 | All | All | All |
| Application | Adobe | Flash Player | 10.0.12.36 | All | All | All |
| Application | Adobe | Flash Player | 10.0.15.3 | All | All | All |
| Application | Adobe | Flash Player | 10.0.22.87 | All | All | All |
| Application | Adobe | Flash Player | 10.0.32.18 | All | All | All |
| Application | Adobe | Flash Player | 10.0.42.34 | All | All | All |
| Application | Adobe | Flash Player | 6.0.79 | All | All | All |
| Application | Adobe | Flash Player | 7.0 | All | All | All |
| Application | Adobe | Flash Player | 7.0.1 | All | All | All |
| Application | Adobe | Flash Player | 7.0.14.0 | All | All | All |
| Application | Adobe | Flash Player | 7.0.19.0 | All | All | All |
| Application | Adobe | Flash Player | 7.0.24.0 | All | All | All |
| Application | Adobe | Flash Player | 7.0.25 | All | All | All |
| Application | Adobe | Flash Player | 7.0.53.0 | All | All | All |
| Application | Adobe | Flash Player | 7.0.60.0 | All | All | All |
| Application | Adobe | Flash Player | 7.0.61.0 | All | All | All |
| Application | Adobe | Flash Player | 7.0.63 | All | All | All |
| Application | Adobe | Flash Player | 7.0.66.0 | All | All | All |
| Application | Adobe | Flash Player | 7.0.67.0 | All | All | All |
| Application | Adobe | Flash Player | 7.0.68.0 | All | All | All |
| Application | Adobe | Flash Player | 7.0.69.0 | All | All | All |
| Application | Adobe | Flash Player | 7.0.70.0 | All | All | All |
| Application | Adobe | Flash Player | 7.0.73.0 | All | All | All |
| Application | Adobe | Flash Player | 7.1 | All | All | All |
| Application | Adobe | Flash Player | 7.1.1 | All | All | All |
| Application | Adobe | Flash Player | 7.2 | All | All | All |
| Application | Adobe | Flash Player | 8.0 | All | All | All |
| Application | Adobe | Flash Player | 8.0.22.0 | All | All | All |
| Application | Adobe | Flash Player | 8.0.24.0 | All | All | All |
| Application | Adobe | Flash Player | 8.0.33.0 | All | All | All |
| Application | Adobe | Flash Player | 8.0.34.0 | All | All | All |
| Application | Adobe | Flash Player | 8.0.35.0 | All | All | All |
| Application | Adobe | Flash Player | 8.0.39.0 | All | All | All |
| Application | Adobe | Flash Player | 8.0.42.0 | All | All | All |
| Application | Adobe | Flash Player | 9.0.115.0 | All | All | All |
| Application | Adobe | Flash Player | 9.0.124.0 | All | All | All |
| Application | Adobe | Flash Player | 9.0.125.0 | All | All | All |
| Application | Adobe | Flash Player | 9.0.151.0 | All | All | All |
| Application | Adobe | Flash Player | 9.0.152.0 | All | All | All |
| Application | Adobe | Flash Player | 9.0.159.0 | All | All | All |
| Application | Adobe | Flash Player | 9.0.16 | All | All | All |
| Application | Adobe | Flash Player | 9.0.20 | All | All | All |
| Application | Adobe | Flash Player | 9.0.20.0 | All | All | All |
| Application | Adobe | Flash Player | 9.0.246.0 | All | All | All |
| Application | Adobe | Flash Player | 9.0.260.0 | All | All | All |
| Application | Adobe | Flash Player | 9.0.262.0 | All | All | All |
| Application | Adobe | Flash Player | 9.0.28 | All | All | All |
| Application | Adobe | Flash Player | 9.0.28.0 | All | All | All |
| Application | Adobe | Flash Player | 9.0.31 | All | All | All |
| Application | Adobe | Flash Player | 9.0.31.0 | All | All | All |
| Application | Adobe | Flash Player | 9.0.45.0 | All | All | All |
| Application | Adobe | Flash Player | 9.0.47.0 | All | All | All |
| Application | Adobe | Flash Player | 9.0.48.0 | All | All | All |
| Application | Adobe | Flash Player | All | All | All | All |
| Application | Chrome | All | All | All | All | |
| Application | Chrome | - | All | All | All | |
| Application | Chrome | All | All | All | All | |
| Application | Macromedia | Flash Player | 5.0 | All | All | All |
| Application | Macromedia | Flash Player | 5.0.30.0 | All | All | All |
| Application | Macromedia | Flash Player | 5.0.41.0 | All | All | All |
| Application | Macromedia | Flash Player | 5.0.42.0 | All | All | All |
| Application | Macromedia | Flash Player | 5.0.58.0 | All | All | All |
| Application | Macromedia | Flash Player | 5.0 | All | All | All |
| Application | Macromedia | Flash Player | 5.0.30.0 | All | All | All |
| Application | Macromedia | Flash Player | 5.0.41.0 | All | All | All |
| Application | Macromedia | Flash Player | 5.0.42.0 | All | All | All |
| Application | Macromedia | Flash Player | 5.0.58.0 | All | All | All |
| Application | Mozilla | Firefox | All | All | All | All |
| Application | Mozilla | Firefox | - | All | All | All |
| Application | Mozilla | Firefox | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| 404 Not Found | TURBO | www.turbolinux.co.jp | |
| Repository / Oval Repository | OVAL | oval.cisecurity.org | |
| rhn.redhat.com | Red Hat Support | REDHAT | www.redhat.com | |
| APPLE-SA-2010-11-10-1 Mac OS X v10.6.5 and Security Update 2010-007 | APPLE | lists.apple.com | |
| Gentoo update for adobe-flash - Advisories - Community | SECUNIA | secunia.com | |
| Adobe AIR Multiple Vulnerabilities - Advisories - Community | SECUNIA | secunia.com | |
| US-CERT Technical Cyber Security Alert TA10-162A -- Adobe Flash and AIR Vulnerabilities | CERT | www.us-cert.gov | US Government Resource |
| Webmail : Solution de messagerie professionnelle - OVHcloud- OVH | VUPEN | www.vupen.com | |
| Webmail : Solution de messagerie professionnelle - OVHcloud- OVH | VUPEN | www.vupen.com | |
| SSRT100179 | HP | itrc.hp.com | |
| RETIRED: Adobe Flash Player 10.0.45.2 and AIR 1.5.3.9130 Multiple Remote Vulnerabilities | BID | www.securityfocus.com | |
| rhn.redhat.com | Red Hat Support | REDHAT | www.redhat.com | |
| Webmail : Solution de messagerie professionnelle - OVHcloud- OVH | VUPEN | www.vupen.com | |
| Adobe Flash Player and AIR URI Parsing Cross Domain Scripting Vulnerability | BID | www.securityfocus.com | |
| HP Systems Insight Manager Multiple Vulnerabilities - Advisories - Community | SECUNIA | secunia.com | |
| [security-announce] SUSE Security Announcement: flash player (SUSE-SA:20 | SUSE | lists.opensuse.org | |
| Webmail : Solution de messagerie professionnelle - OVHcloud- OVH | VUPEN | www.vupen.com | |
| SecurityTracker.com Archives - Adobe Flash Player Multiple Flaws Let Remote Users Execute Arbitary Code, Conduct Cross-Site Scripting Attacks, and Deny Service | SECTRACK | securitytracker.com | |
| Webmail : Solution de messagerie professionnelle - OVHcloud- OVH | VUPEN | www.vupen.com | |
| IBM X-Force Exchange | XF | exchange.xforce.ibmcloud.com | |
| Webmail : Solution de messagerie professionnelle - OVHcloud- OVH | VUPEN | www.vupen.com | |
| Gentoo Linux Documentation -- Adobe Flash Player: Multiple vulnerabilities | GENTOO | security.gentoo.org | |
| [security-announce] SUSE Security Summary Report: SUSE-SR:2010:013 | SUSE | lists.opensuse.org | |
| Adobe - Security Bulletins: APSB10-14 Security update available for Adobe Flash Player | CONFIRM | www.adobe.com | Patch, Vendor Advisory |
| SecurityTracker.com Archives - Adobe AIR Multiple Flaws Let Remote Users Execute Arbitary Code, Conduct Cross-Site Scripting Attacks, and Deny Service | SECTRACK | securitytracker.com | |
| About the security content of Mac OS X v10.6.5 and Security Update 2010-007 | CONFIRM | support.apple.com | |
| Webmail : Solution de messagerie professionnelle - OVHcloud- OVH | VUPEN | www.vupen.com | |
| Webmail : Solution de messagerie professionnelle - OVHcloud- OVH | VUPEN | www.vupen.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.