CVE-2010-2167

N/A Unknown
Published: June 15, 2010 Modified: April 29, 2026
View on NVD

Description

Multiple heap-based buffer overflows in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors related to malformed (1) GIF or (2) JPEG data.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751
Source: psirt@adobe.com
http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html
Source: psirt@adobe.com
http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00000.html
Source: psirt@adobe.com
http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html
Source: psirt@adobe.com
http://secunia.com/advisories/40144
Source: psirt@adobe.com
http://secunia.com/advisories/40545
Source: psirt@adobe.com
http://secunia.com/advisories/43026
Source: psirt@adobe.com
http://security.gentoo.org/glsa/glsa-201101-09.xml
Source: psirt@adobe.com
http://securitytracker.com/id?1024085
Source: psirt@adobe.com
http://securitytracker.com/id?1024086
Source: psirt@adobe.com
http://support.apple.com/kb/HT4435
Source: psirt@adobe.com
http://www.adobe.com/support/security/bulletins/apsb10-14.html
Source: psirt@adobe.com
Patch Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2010-0464.html
Source: psirt@adobe.com
http://www.redhat.com/support/errata/RHSA-2010-0470.html
Source: psirt@adobe.com
http://www.securityfocus.com/archive/1/511847/100/0/threaded
Source: psirt@adobe.com
http://www.securityfocus.com/bid/40759
Source: psirt@adobe.com
http://www.securityfocus.com/bid/40802
Source: psirt@adobe.com
http://www.turbolinux.co.jp/security/2010/TLSA-2010-19j.txt
Source: psirt@adobe.com
http://www.us-cert.gov/cas/techalerts/TA10-162A.html
Source: psirt@adobe.com
US Government Resource
http://www.vupen.com/english/advisories/2010/1421
Source: psirt@adobe.com
http://www.vupen.com/english/advisories/2010/1432
Source: psirt@adobe.com
http://www.vupen.com/english/advisories/2010/1434
Source: psirt@adobe.com
http://www.vupen.com/english/advisories/2010/1453
Source: psirt@adobe.com
http://www.vupen.com/english/advisories/2010/1482
Source: psirt@adobe.com
http://www.vupen.com/english/advisories/2010/1522
Source: psirt@adobe.com
http://www.vupen.com/english/advisories/2010/1793
Source: psirt@adobe.com
http://www.vupen.com/english/advisories/2011/0192
Source: psirt@adobe.com
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15437
Source: psirt@adobe.com
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7491
Source: psirt@adobe.com
http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751
Source: af854a3a-2127-422b-91ae-364da2661108
http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00000.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/40144
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/40545
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/43026
Source: af854a3a-2127-422b-91ae-364da2661108
http://security.gentoo.org/glsa/glsa-201101-09.xml
Source: af854a3a-2127-422b-91ae-364da2661108
http://securitytracker.com/id?1024085
Source: af854a3a-2127-422b-91ae-364da2661108
http://securitytracker.com/id?1024086
Source: af854a3a-2127-422b-91ae-364da2661108
http://support.apple.com/kb/HT4435
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.adobe.com/support/security/bulletins/apsb10-14.html
Source: af854a3a-2127-422b-91ae-364da2661108
Patch Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2010-0464.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.redhat.com/support/errata/RHSA-2010-0470.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/archive/1/511847/100/0/threaded
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/40759
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/40802
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.turbolinux.co.jp/security/2010/TLSA-2010-19j.txt
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.us-cert.gov/cas/techalerts/TA10-162A.html
Source: af854a3a-2127-422b-91ae-364da2661108
US Government Resource
http://www.vupen.com/english/advisories/2010/1421
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2010/1432
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2010/1434
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2010/1453
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2010/1482
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2010/1522
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2010/1793
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2011/0192
Source: af854a3a-2127-422b-91ae-364da2661108
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15437
Source: af854a3a-2127-422b-91ae-364da2661108
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7491
Source: af854a3a-2127-422b-91ae-364da2661108

58 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
0.8%
74th percentile
Exploitation Status
Not in CISA KEV

Weaknesses (CWE)

CWE-119

Affected Vendors

adobe macromedia

Related CVEs

CVE-2026-8431 7.2
CVE-2026-8430 8.1
CVE-2026-8429 8.8
CVE-2026-34684 5.5
CVE-2026-34683 5.5