← back
CVE-2011-2444

CVE-2011-2444

EPSS 2.7%
Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186.7 on Android, allows remote attackers to inject arbitrary web script or HTML via a crafted URL, related to a "universal cross-site scripting issue," as exploited in the wild in September 2011.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://googlechromereleases.blogspot.com/2011/09/stable-channel-update_20.htmlhttp://lists.opensuse.org/opensuse-security-announce/2011-09/msg00025.htmlhttp://secunia.com/advisories/48308https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14050https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15272http://www.adobe.com/support/security/bulletins/apsb11-26.htmlhttp://www.redhat.com/support/errata/RHSA-2011-1333.html