[VIM] ZDI-10-115: Adobe Flash Player AVM newFrameState Integer Overfow Remote Code Execution Vulnerability
ZDI Disclosures
zdi-disclosures at tippingpoint.com
Tue Jul 6 15:54:41 CDT 2010
Hi Brian,
I can confirm and it does share the CVE ID, as provided to us by the vendor.
Best,
Kate
-----Original Message-----
From: security curmudgeon [mailto:jericho at attrition.org]
Sent: Monday, July 05, 2010 2:04 PM
To: ZDI Disclosures
Cc: vim at attrition.org
Subject: Re: ZDI-10-115: Adobe Flash Player AVM newFrameState Integer Overfow Remote Code Execution Vulnerability
Hi ZDI,
On Fri, 25 Jun 2010, ZDI Disclosures wrote:
: ZDI-10-115: Adobe Flash Player AVM newFrameState Integer Overfow Remote Code Execution Vulnerability
: http://www.zerodayinitiative.com/advisories/ZDI-10-115
: -- CVE ID:
: CVE-2010-2160
ZDI-10-114 shares this CVE, and the CVE entry only references the getouterscope method:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=2010-2160
Can you confirm the newFrameState issue (ZDI-10-115) shares the same CVE?
Thanks,
Brian
OSVDB.org
More information about the VIM
mailing list