CVE-2010-3654

N/A Unknown
Published: October 29, 2010 Modified: April 29, 2026
View on NVD

Description

Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris and 10.1.95.1 on Android, and authplay.dll (aka AuthPlayLib.bundle or libauthplay.so.0.0.0) in Adobe Reader and Acrobat 9.x through 9.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via crafted SWF content, as exploited in the wild in October 2010.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://blogs.sun.com/security/entry/multiple_vulnerabilities_in_adobe_flash1
Source: psirt@adobe.com
http://contagiodump.blogspot.com/2010/10/potential-new-adobe-flash-player-zero.html
Source: psirt@adobe.com
Exploit
http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html
Source: psirt@adobe.com
http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00002.html
Source: psirt@adobe.com
http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00001.html
Source: psirt@adobe.com
http://secunia.com/advisories/41917
Source: psirt@adobe.com
Vendor Advisory
http://secunia.com/advisories/42030
Source: psirt@adobe.com
http://secunia.com/advisories/42183
Source: psirt@adobe.com
http://secunia.com/advisories/42401
Source: psirt@adobe.com
http://secunia.com/advisories/42926
Source: psirt@adobe.com
http://secunia.com/advisories/43025
Source: psirt@adobe.com
http://secunia.com/advisories/43026
Source: psirt@adobe.com
http://security.gentoo.org/glsa/glsa-201101-08.xml
Source: psirt@adobe.com
http://security.gentoo.org/glsa/glsa-201101-09.xml
Source: psirt@adobe.com
http://securityreason.com/securityalert/8210
Source: psirt@adobe.com
http://support.apple.com/kb/HT4435
Source: psirt@adobe.com
http://www.adobe.com/support/security/advisories/apsa10-05.html
Source: psirt@adobe.com
Vendor Advisory
http://www.adobe.com/support/security/bulletins/apsb10-26.html
Source: psirt@adobe.com
http://www.adobe.com/support/security/bulletins/apsb10-28.html
Source: psirt@adobe.com
http://www.kb.cert.org/vuls/id/298081
Source: psirt@adobe.com
US Government Resource
http://www.redhat.com/support/errata/RHSA-2010-0829.html
Source: psirt@adobe.com
http://www.redhat.com/support/errata/RHSA-2010-0834.html
Source: psirt@adobe.com
http://www.redhat.com/support/errata/RHSA-2010-0867.html
Source: psirt@adobe.com
http://www.redhat.com/support/errata/RHSA-2010-0934.html
Source: psirt@adobe.com
http://www.securityfocus.com/bid/44504
Source: psirt@adobe.com
http://www.securitytracker.com/id?1024659
Source: psirt@adobe.com
http://www.securitytracker.com/id?1024660
Source: psirt@adobe.com
http://www.turbolinux.co.jp/security/2011/TLSA-2011-2j.txt
Source: psirt@adobe.com
http://www.vupen.com/english/advisories/2010/2903
Source: psirt@adobe.com
http://www.vupen.com/english/advisories/2010/2906
Source: psirt@adobe.com
http://www.vupen.com/english/advisories/2010/2918
Source: psirt@adobe.com
http://www.vupen.com/english/advisories/2010/3111
Source: psirt@adobe.com
http://www.vupen.com/english/advisories/2011/0173
Source: psirt@adobe.com
http://www.vupen.com/english/advisories/2011/0191
Source: psirt@adobe.com
http://www.vupen.com/english/advisories/2011/0192
Source: psirt@adobe.com
http://www.vupen.com/english/advisories/2011/0344
Source: psirt@adobe.com
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13294
Source: psirt@adobe.com
http://blogs.sun.com/security/entry/multiple_vulnerabilities_in_adobe_flash1
Source: af854a3a-2127-422b-91ae-364da2661108
http://contagiodump.blogspot.com/2010/10/potential-new-adobe-flash-player-zero.html
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit
http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00002.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00001.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/41917
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://secunia.com/advisories/42030
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/42183
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/42401
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/42926
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/43025
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/43026
Source: af854a3a-2127-422b-91ae-364da2661108
http://security.gentoo.org/glsa/glsa-201101-08.xml
Source: af854a3a-2127-422b-91ae-364da2661108
http://security.gentoo.org/glsa/glsa-201101-09.xml
Source: af854a3a-2127-422b-91ae-364da2661108
http://securityreason.com/securityalert/8210
Source: af854a3a-2127-422b-91ae-364da2661108
http://support.apple.com/kb/HT4435
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.adobe.com/support/security/advisories/apsa10-05.html
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://www.adobe.com/support/security/bulletins/apsb10-26.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.adobe.com/support/security/bulletins/apsb10-28.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.kb.cert.org/vuls/id/298081
Source: af854a3a-2127-422b-91ae-364da2661108
US Government Resource
http://www.redhat.com/support/errata/RHSA-2010-0829.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.redhat.com/support/errata/RHSA-2010-0834.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.redhat.com/support/errata/RHSA-2010-0867.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.redhat.com/support/errata/RHSA-2010-0934.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/44504
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securitytracker.com/id?1024659
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securitytracker.com/id?1024660
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.turbolinux.co.jp/security/2011/TLSA-2011-2j.txt
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2010/2903
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2010/2906
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2010/2918
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2010/3111
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2011/0173
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2011/0191
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2011/0192
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2011/0344
Source: af854a3a-2127-422b-91ae-364da2661108
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13294
Source: af854a3a-2127-422b-91ae-364da2661108

74 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
69.7%
99th percentile
Exploitation Status
Not in CISA KEV

Weaknesses (CWE)

CWE-119

Affected Vendors

linux apple microsoft macromedia google adobe oracle

Related CVEs

CVE-2026-57700 10.0
CVE-2026-56790 7.3
CVE-2026-56789 6.5
CVE-2026-56788 4.4
CVE-2026-56787 6.5