CVE-2010-3636

N/A Unknown
Published: November 07, 2010 Modified: April 29, 2026
View on NVD

Description

Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, does not properly handle unspecified encodings during the parsing of a cross-domain policy file, which allows remote web servers to bypass intended access restrictions via unknown vectors.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://blogs.sun.com/security/entry/multiple_vulnerabilities_in_adobe_flash1
Source: psirt@adobe.com
Broken Link
http://jvn.jp/en/jp/JVN48425028/index.html
Source: psirt@adobe.com
Third Party Advisory VDB Entry
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000054.html
Source: psirt@adobe.com
Third Party Advisory VDB Entry
http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html
Source: psirt@adobe.com
Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00002.html
Source: psirt@adobe.com
Third Party Advisory
http://marc.info/?l=bugtraq&m=130331642631603&w=2
Source: psirt@adobe.com
Mailing List Third Party Advisory
http://secunia.com/advisories/42183
Source: psirt@adobe.com
Third Party Advisory
http://secunia.com/advisories/42926
Source: psirt@adobe.com
Third Party Advisory
http://secunia.com/advisories/43026
Source: psirt@adobe.com
Third Party Advisory
http://security.gentoo.org/glsa/glsa-201101-09.xml
Source: psirt@adobe.com
Third Party Advisory
http://support.apple.com/kb/HT4435
Source: psirt@adobe.com
Third Party Advisory
http://www.adobe.com/support/security/bulletins/apsb10-26.html
Source: psirt@adobe.com
Patch Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2010-0829.html
Source: psirt@adobe.com
Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0834.html
Source: psirt@adobe.com
Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0867.html
Source: psirt@adobe.com
Third Party Advisory
http://www.securityfocus.com/bid/44691
Source: psirt@adobe.com
Third Party Advisory VDB Entry
http://www.vupen.com/english/advisories/2010/2903
Source: psirt@adobe.com
Third Party Advisory
http://www.vupen.com/english/advisories/2010/2906
Source: psirt@adobe.com
Third Party Advisory
http://www.vupen.com/english/advisories/2010/2918
Source: psirt@adobe.com
Third Party Advisory
http://www.vupen.com/english/advisories/2011/0173
Source: psirt@adobe.com
Third Party Advisory
http://www.vupen.com/english/advisories/2011/0192
Source: psirt@adobe.com
Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12142
Source: psirt@adobe.com
Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15913
Source: psirt@adobe.com
Third Party Advisory
http://blogs.sun.com/security/entry/multiple_vulnerabilities_in_adobe_flash1
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
http://jvn.jp/en/jp/JVN48425028/index.html
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory VDB Entry
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000054.html
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory VDB Entry
http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00002.html
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://marc.info/?l=bugtraq&m=130331642631603&w=2
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing List Third Party Advisory
http://secunia.com/advisories/42183
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/42926
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://secunia.com/advisories/43026
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://security.gentoo.org/glsa/glsa-201101-09.xml
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://support.apple.com/kb/HT4435
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.adobe.com/support/security/bulletins/apsb10-26.html
Source: af854a3a-2127-422b-91ae-364da2661108
Patch Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2010-0829.html
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0834.html
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2010-0867.html
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.securityfocus.com/bid/44691
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory VDB Entry
http://www.vupen.com/english/advisories/2010/2903
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.vupen.com/english/advisories/2010/2906
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.vupen.com/english/advisories/2010/2918
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.vupen.com/english/advisories/2011/0173
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
http://www.vupen.com/english/advisories/2011/0192
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12142
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15913
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory

46 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
5.3%
91th percentile
Exploitation Status
Not in CISA KEV

Weaknesses (CWE)

CWE-264

Affected Vendors

linux apple microsoft sun google adobe

Related CVEs

CVE-2026-57700 10.0
CVE-2026-56790 7.3
CVE-2026-56789 6.5
CVE-2026-56788 4.4
CVE-2026-56787 6.5