Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2011-0611
PUBLISHED
More InfoOfficial Page
Assigner-adobe
Assigner Org ID-078d4453-3bcd-4900-85e6-15281da43538
View Known Exploited Vulnerability (KEV) details
Published At-13 Apr, 2011 | 14:00
Updated At-22 Oct, 2025 | 00:05
Rejected At-
▼CVE Numbering Authority (CNA)

Adobe Flash Player before 10.2.154.27 on Windows, Mac OS X, Linux, and Solaris and 10.2.156.12 and earlier on Android; Adobe AIR before 2.6.19140; and Authplay.dll (aka AuthPlayLib.bundle) in Adobe Reader 9.x before 9.4.4 and 10.x through 10.0.1 on Windows, Adobe Reader 9.x before 9.4.4 and 10.x before 10.0.3 on Mac OS X, and Adobe Acrobat 9.x before 9.4.4 and 10.x before 10.0.3 on Windows and Mac OS X allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted Flash content; as demonstrated by a Microsoft Office document with an embedded .swf file that has a size inconsistency in a "group of included constants," object type confusion, ActionScript that adds custom functions to prototypes, and Date objects; and as exploited in the wild in April 2011.

Affected Products
Vendor
n/a
Product
n/a
Versions
Affected
  • n/a
Problem Types
TypeCWE IDDescription
textN/An/a
Type: text
CWE ID: N/A
Description: n/a
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
http://bugix-security.blogspot.com/2011/04/cve-2011-0611-adobe-flash-zero-day.html
x_refsource_MISC
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14175
vdb-entry
signature
x_refsource_OVAL
http://www.securityfocus.com/bid/47314
vdb-entry
x_refsource_BID
http://secunia.com/blog/210/
x_refsource_MISC
http://securityreason.com/securityalert/8204
third-party-advisory
x_refsource_SREASON
http://www.vupen.com/english/advisories/2011/0922
vdb-entry
x_refsource_VUPEN
http://www.redhat.com/support/errata/RHSA-2011-0451.html
vendor-advisory
x_refsource_REDHAT
http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00004.html
vendor-advisory
x_refsource_SUSE
http://www.adobe.com/support/security/bulletins/apsb11-07.html
x_refsource_CONFIRM
http://securityreason.com/securityalert/8292
third-party-advisory
x_refsource_SREASON
http://secunia.com/advisories/44149
third-party-advisory
x_refsource_SECUNIA
http://secunia.com/advisories/44141
third-party-advisory
x_refsource_SECUNIA
https://exchange.xforce.ibmcloud.com/vulnerabilities/66681
vdb-entry
x_refsource_XF
http://www.vupen.com/english/advisories/2011/0924
vdb-entry
x_refsource_VUPEN
http://www.securitytracker.com/id?1025325
vdb-entry
x_refsource_SECTRACK
http://www.exploit-db.com/exploits/17175
exploit
x_refsource_EXPLOIT-DB
http://blogs.technet.com/b/mmpc/archive/2011/04/12/analysis-of-the-cve-2011-0611-adobe-flash-player-vulnerability-exploitation.aspx
x_refsource_MISC
http://secunia.com/advisories/44119
third-party-advisory
x_refsource_SECUNIA
http://www.kb.cert.org/vuls/id/230057
third-party-advisory
x_refsource_CERT-VN
http://contagiodump.blogspot.com/2011/04/apr-8-cve-2011-0611-flash-player-zero.html
x_refsource_MISC
http://www.vupen.com/english/advisories/2011/0923
vdb-entry
x_refsource_VUPEN
http://www.adobe.com/support/security/advisories/apsa11-02.html
x_refsource_CONFIRM
http://googlechromereleases.blogspot.com/2011/04/stable-channel-update.html
x_refsource_CONFIRM
http://www.adobe.com/support/security/bulletins/apsb11-08.html
x_refsource_CONFIRM
http://www.securitytracker.com/id?1025324
vdb-entry
x_refsource_SECTRACK
Hyperlink: http://bugix-security.blogspot.com/2011/04/cve-2011-0611-adobe-flash-zero-day.html
Resource:
x_refsource_MISC
Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14175
Resource:
vdb-entry
signature
x_refsource_OVAL
Hyperlink: http://www.securityfocus.com/bid/47314
Resource:
vdb-entry
x_refsource_BID
Hyperlink: http://secunia.com/blog/210/
Resource:
x_refsource_MISC
Hyperlink: http://securityreason.com/securityalert/8204
Resource:
third-party-advisory
x_refsource_SREASON
Hyperlink: http://www.vupen.com/english/advisories/2011/0922
Resource:
vdb-entry
x_refsource_VUPEN
Hyperlink: http://www.redhat.com/support/errata/RHSA-2011-0451.html
Resource:
vendor-advisory
x_refsource_REDHAT
Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00004.html
Resource:
vendor-advisory
x_refsource_SUSE
Hyperlink: http://www.adobe.com/support/security/bulletins/apsb11-07.html
Resource:
x_refsource_CONFIRM
Hyperlink: http://securityreason.com/securityalert/8292
Resource:
third-party-advisory
x_refsource_SREASON
Hyperlink: http://secunia.com/advisories/44149
Resource:
third-party-advisory
x_refsource_SECUNIA
Hyperlink: http://secunia.com/advisories/44141
Resource:
third-party-advisory
x_refsource_SECUNIA
Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/66681
Resource:
vdb-entry
x_refsource_XF
Hyperlink: http://www.vupen.com/english/advisories/2011/0924
Resource:
vdb-entry
x_refsource_VUPEN
Hyperlink: http://www.securitytracker.com/id?1025325
Resource:
vdb-entry
x_refsource_SECTRACK
Hyperlink: http://www.exploit-db.com/exploits/17175
Resource:
exploit
x_refsource_EXPLOIT-DB
Hyperlink: http://blogs.technet.com/b/mmpc/archive/2011/04/12/analysis-of-the-cve-2011-0611-adobe-flash-player-vulnerability-exploitation.aspx
Resource:
x_refsource_MISC
Hyperlink: http://secunia.com/advisories/44119
Resource:
third-party-advisory
x_refsource_SECUNIA
Hyperlink: http://www.kb.cert.org/vuls/id/230057
Resource:
third-party-advisory
x_refsource_CERT-VN
Hyperlink: http://contagiodump.blogspot.com/2011/04/apr-8-cve-2011-0611-flash-player-zero.html
Resource:
x_refsource_MISC
Hyperlink: http://www.vupen.com/english/advisories/2011/0923
Resource:
vdb-entry
x_refsource_VUPEN
Hyperlink: http://www.adobe.com/support/security/advisories/apsa11-02.html
Resource:
x_refsource_CONFIRM
Hyperlink: http://googlechromereleases.blogspot.com/2011/04/stable-channel-update.html
Resource:
x_refsource_CONFIRM
Hyperlink: http://www.adobe.com/support/security/bulletins/apsb11-08.html
Resource:
x_refsource_CONFIRM
Hyperlink: http://www.securitytracker.com/id?1025324
Resource:
vdb-entry
x_refsource_SECTRACK
▼Authorized Data Publishers (ADP)
1. CISA ADP Vulnrichment
Affected Products
Vendor
Adobe Inc.adobe
Product
flash_player
CPEs
  • cpe:2.3:a:adobe:flash_player:-:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • From 0 before 10.2.154.27 (custom)
Vendor
Adobe Inc.adobe
Product
air
CPEs
  • cpe:2.3:a:adobe:air:*:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • From 0 before 2.6.19140 (custom)
Vendor
Adobe Inc.adobe
Product
reader
CPEs
  • cpe:2.3:a:adobe:reader:9.0:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • From 9.0 before 9.4.4 (custom)
Vendor
Adobe Inc.adobe
Product
reader
CPEs
  • cpe:2.3:a:adobe:reader:10.0:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • From 10.0 before 10.0.3 (custom)
Vendor
Adobe Inc.adobe
Product
acrobat
CPEs
  • cpe:2.3:a:adobe:acrobat:10.0:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • From 10.0 before 10.0.3 (custom)
Vendor
Adobe Inc.adobe
Product
acrobat
CPEs
  • cpe:2.3:a:adobe:acrobat:9.0:*:*:*:*:*:*:*
Default Status
unknown
Versions
Affected
  • From 9.0 before 9.4.4 (custom)
Problem Types
TypeCWE IDDescription
CWECWE-843CWE-843 Access of Resource Using Incompatible Type ('Type Confusion')
Type: CWE
CWE ID: CWE-843
Description: CWE-843 Access of Resource Using Incompatible Type ('Type Confusion')
Metrics
VersionBase scoreBase severityVector
3.18.8HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Version: 3.1
Base score: 8.8
Base severity: HIGH
Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Metrics Other Info
kev
dateAdded:
2022-03-03
reference:
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2011-0611
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
CVE-2011-0611 added to CISA KEV2022-03-03 00:00:00
Event: CVE-2011-0611 added to CISA KEV
Date: 2022-03-03 00:00:00
Replaced By
Rejected Reason
References
HyperlinkResource
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2011-0611
government-resource
Hyperlink: https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2011-0611
Resource:
government-resource
2. CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
http://bugix-security.blogspot.com/2011/04/cve-2011-0611-adobe-flash-zero-day.html
x_refsource_MISC
x_transferred
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14175
vdb-entry
signature
x_refsource_OVAL
x_transferred
http://www.securityfocus.com/bid/47314
vdb-entry
x_refsource_BID
x_transferred
http://secunia.com/blog/210/
x_refsource_MISC
x_transferred
http://securityreason.com/securityalert/8204
third-party-advisory
x_refsource_SREASON
x_transferred
http://www.vupen.com/english/advisories/2011/0922
vdb-entry
x_refsource_VUPEN
x_transferred
http://www.redhat.com/support/errata/RHSA-2011-0451.html
vendor-advisory
x_refsource_REDHAT
x_transferred
http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00004.html
vendor-advisory
x_refsource_SUSE
x_transferred
http://www.adobe.com/support/security/bulletins/apsb11-07.html
x_refsource_CONFIRM
x_transferred
http://securityreason.com/securityalert/8292
third-party-advisory
x_refsource_SREASON
x_transferred
http://secunia.com/advisories/44149
third-party-advisory
x_refsource_SECUNIA
x_transferred
http://secunia.com/advisories/44141
third-party-advisory
x_refsource_SECUNIA
x_transferred
https://exchange.xforce.ibmcloud.com/vulnerabilities/66681
vdb-entry
x_refsource_XF
x_transferred
http://www.vupen.com/english/advisories/2011/0924
vdb-entry
x_refsource_VUPEN
x_transferred
http://www.securitytracker.com/id?1025325
vdb-entry
x_refsource_SECTRACK
x_transferred
http://www.exploit-db.com/exploits/17175
exploit
x_refsource_EXPLOIT-DB
x_transferred
http://blogs.technet.com/b/mmpc/archive/2011/04/12/analysis-of-the-cve-2011-0611-adobe-flash-player-vulnerability-exploitation.aspx
x_refsource_MISC
x_transferred
http://secunia.com/advisories/44119
third-party-advisory
x_refsource_SECUNIA
x_transferred
http://www.kb.cert.org/vuls/id/230057
third-party-advisory
x_refsource_CERT-VN
x_transferred
http://contagiodump.blogspot.com/2011/04/apr-8-cve-2011-0611-flash-player-zero.html
x_refsource_MISC
x_transferred
http://www.vupen.com/english/advisories/2011/0923
vdb-entry
x_refsource_VUPEN
x_transferred
http://www.adobe.com/support/security/advisories/apsa11-02.html
x_refsource_CONFIRM
x_transferred
http://googlechromereleases.blogspot.com/2011/04/stable-channel-update.html
x_refsource_CONFIRM
x_transferred
http://www.adobe.com/support/security/bulletins/apsb11-08.html
x_refsource_CONFIRM
x_transferred
http://www.securitytracker.com/id?1025324
vdb-entry
x_refsource_SECTRACK
x_transferred
Hyperlink: http://bugix-security.blogspot.com/2011/04/cve-2011-0611-adobe-flash-zero-day.html
Resource:
x_refsource_MISC
x_transferred
Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14175
Resource:
vdb-entry
signature
x_refsource_OVAL
x_transferred
Hyperlink: http://www.securityfocus.com/bid/47314
Resource:
vdb-entry
x_refsource_BID
x_transferred
Hyperlink: http://secunia.com/blog/210/
Resource:
x_refsource_MISC
x_transferred
Hyperlink: http://securityreason.com/securityalert/8204
Resource:
third-party-advisory
x_refsource_SREASON
x_transferred
Hyperlink: http://www.vupen.com/english/advisories/2011/0922
Resource:
vdb-entry
x_refsource_VUPEN
x_transferred
Hyperlink: http://www.redhat.com/support/errata/RHSA-2011-0451.html
Resource:
vendor-advisory
x_refsource_REDHAT
x_transferred
Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00004.html
Resource:
vendor-advisory
x_refsource_SUSE
x_transferred
Hyperlink: http://www.adobe.com/support/security/bulletins/apsb11-07.html
Resource:
x_refsource_CONFIRM
x_transferred
Hyperlink: http://securityreason.com/securityalert/8292
Resource:
third-party-advisory
x_refsource_SREASON
x_transferred
Hyperlink: http://secunia.com/advisories/44149
Resource:
third-party-advisory
x_refsource_SECUNIA
x_transferred
Hyperlink: http://secunia.com/advisories/44141
Resource:
third-party-advisory
x_refsource_SECUNIA
x_transferred
Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/66681
Resource:
vdb-entry
x_refsource_XF
x_transferred
Hyperlink: http://www.vupen.com/english/advisories/2011/0924
Resource:
vdb-entry
x_refsource_VUPEN
x_transferred
Hyperlink: http://www.securitytracker.com/id?1025325
Resource:
vdb-entry
x_refsource_SECTRACK
x_transferred
Hyperlink: http://www.exploit-db.com/exploits/17175
Resource:
exploit
x_refsource_EXPLOIT-DB
x_transferred
Hyperlink: http://blogs.technet.com/b/mmpc/archive/2011/04/12/analysis-of-the-cve-2011-0611-adobe-flash-player-vulnerability-exploitation.aspx
Resource:
x_refsource_MISC
x_transferred
Hyperlink: http://secunia.com/advisories/44119
Resource:
third-party-advisory
x_refsource_SECUNIA
x_transferred
Hyperlink: http://www.kb.cert.org/vuls/id/230057
Resource:
third-party-advisory
x_refsource_CERT-VN
x_transferred
Hyperlink: http://contagiodump.blogspot.com/2011/04/apr-8-cve-2011-0611-flash-player-zero.html
Resource:
x_refsource_MISC
x_transferred
Hyperlink: http://www.vupen.com/english/advisories/2011/0923
Resource:
vdb-entry
x_refsource_VUPEN
x_transferred
Hyperlink: http://www.adobe.com/support/security/advisories/apsa11-02.html
Resource:
x_refsource_CONFIRM
x_transferred
Hyperlink: http://googlechromereleases.blogspot.com/2011/04/stable-channel-update.html
Resource:
x_refsource_CONFIRM
x_transferred
Hyperlink: http://www.adobe.com/support/security/bulletins/apsb11-08.html
Resource:
x_refsource_CONFIRM
x_transferred
Hyperlink: http://www.securitytracker.com/id?1025324
Resource:
vdb-entry
x_refsource_SECTRACK
x_transferred
Details not found