CVE-2010-0186 Information

Description

Cross-domain vulnerability in Adobe Flash Player before 10.0.45.2 Adobe AIR before 1.5.3.9130 and Adobe Reader and Acrobat 8.x before 8.2.1 and 9.x before 9.3.1 allows remote attackers to bypass intended sandbox restrictions and make cross-domain requests via unspecified vectors.

Reference

http://lists.apple.com/archives/security-announce/2010//Jun/msg00001.html http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00004.html http://secunia.com/advisories/38547 http://secunia.com/advisories/38639 http://secunia.com/advisories/38915 http://secunia.com/advisories/40220 http://secunia.com/advisories/43026 http://security.gentoo.org/glsa/glsa-201101-09.xml http://securitytracker.com/id?1023585 http://support.apple.com/kb/HT4188 http://www.adobe.com/support/security/bulletins/apsb10-06.html http://www.adobe.com/support/security/bulletins/apsb10-07.html http://www.osvdb.org/62300 http://www.redhat.com/support/errata/RHSA-2010-0114.html http://www.securityfocus.com/bid/38198 http://www.vupen.com/english/advisories/2010/1481 http://www.vupen.com/english/advisories/2011/0192 https://bugzilla.redhat.com/show_bug.cgi?id=563819 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A8518 https://rhn.redhat.com/errata/RHSA-2010-0102.html https://rhn.redhat.com/errata/RHSA-2010-0103.html