CVE-2010-2162

N/A Unknown

Published: June 15, 2010 Modified: April 29, 2026

Description

Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, allows attackers to cause a denial of service (heap memory corruption) or possibly execute arbitrary code via vectors related to improper length calculation and the (1) STSC, (2) STSZ, and (3) STCO atoms.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751

Source: psirt@adobe.com

http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html

Source: psirt@adobe.com

http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00000.html

Source: psirt@adobe.com

http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html

Source: psirt@adobe.com

http://secunia.com/advisories/40144

Source: psirt@adobe.com

http://secunia.com/advisories/40545

Source: psirt@adobe.com

http://secunia.com/advisories/43026

Source: psirt@adobe.com

http://security.gentoo.org/glsa/glsa-201101-09.xml

Source: psirt@adobe.com

http://securitytracker.com/id?1024085

Source: psirt@adobe.com

http://securitytracker.com/id?1024086

Source: psirt@adobe.com

http://support.apple.com/kb/HT4435

Source: psirt@adobe.com

http://www.adobe.com/support/security/bulletins/apsb10-14.html

Source: psirt@adobe.com

Patch Vendor Advisory

http://www.redhat.com/support/errata/RHSA-2010-0464.html

Source: psirt@adobe.com

http://www.redhat.com/support/errata/RHSA-2010-0470.html

Source: psirt@adobe.com

http://www.securityfocus.com/archive/1/511862/100/0/threaded

Source: psirt@adobe.com

http://www.securityfocus.com/bid/40759

Source: psirt@adobe.com

http://www.securityfocus.com/bid/40801

Source: psirt@adobe.com

http://www.turbolinux.co.jp/security/2010/TLSA-2010-19j.txt

Source: psirt@adobe.com

http://www.us-cert.gov/cas/techalerts/TA10-162A.html

Source: psirt@adobe.com

US Government Resource

http://www.vupen.com/english/advisories/2010/1421

Source: psirt@adobe.com

http://www.vupen.com/english/advisories/2010/1432

Source: psirt@adobe.com

http://www.vupen.com/english/advisories/2010/1434

Source: psirt@adobe.com

http://www.vupen.com/english/advisories/2010/1453

Source: psirt@adobe.com

http://www.vupen.com/english/advisories/2010/1482

Source: psirt@adobe.com

http://www.vupen.com/english/advisories/2010/1522

Source: psirt@adobe.com

http://www.vupen.com/english/advisories/2010/1793

Source: psirt@adobe.com

http://www.vupen.com/english/advisories/2011/0192

Source: psirt@adobe.com

http://www.zerodayinitiative.com/advisories/ZDI-10-109

Source: psirt@adobe.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16345

Source: psirt@adobe.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7166

Source: psirt@adobe.com

http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751