VYPR
High severity7.8CISA KEVNVD Advisory· Published Jun 8, 2010· Updated Jun 16, 2026

CVE-2010-1297

CVE-2010-1297

Description

Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64; Adobe AIR before 2.0.2.12610; and Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Windows and Mac OS X, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted SWF content, related to authplay.dll and the ActionScript Virtual Machine 2 (AVM2) newfunction instruction, as exploited in the wild in June 2010.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

10
  • cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:*range: >=8.0,<8.2.3
    • (no CPE)range: <9.3.3 and <8.2.3
  • cpe:2.3:a:adobe:air:*:*:*:*:*:*:*:*
    Range: <2.0.2.12610
  • cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*range: <9.0.277.0
    • (no CPE)range: <9.0.277.0 and <10.1.53.64
  • cpe:2.3:o:opensuse:opensuse:*:*:*:*:*:*:*:*
    Range: >=11.0,<=11.2
  • cpe:2.3:o:suse:linux_enterprise:10.0:sp3:*:*:*:*:*:*+ 2 more
    • cpe:2.3:o:suse:linux_enterprise:10.0:sp3:*:*:*:*:*:*
    • cpe:2.3:o:suse:linux_enterprise:11.0:-:*:*:*:*:*:*
    • cpe:2.3:o:suse:linux_enterprise:11.0:sp1:*:*:*:*:*:*
  • Range: <9.3.3 and <8.2.3

Patches

Vulnerability mechanics

References

44

News mentions

0

No linked articles in our index yet.