CVE-2010-2179 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2010-2179 Interim 1 12 2023-12-09T01:57:14Z current 2021-05-30T12:52:05Z 2023-12-09T01:57:14Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2010-2179 Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, when Firefox or Chrome is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to URL parsing. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/G34RCK6OR4X7FIYXPN64XUQM453EE5HV/#G34RCK6OR4X7FIYXPN64XUQM453EE5HV E-Mail link for SUSE-SA:2010:024 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/EG3CTD3H4CUVHS6LF3NQBD3PCOQ7QQJ3/#EG3CTD3H4CUVHS6LF3NQBD3PCOQ7QQJ3 E-Mail link for SUSE-SR:2010:013 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 flash-player-11.2.202.406-1.3 flash-player-11.2.202.548-111.1 flash-player-gnome-11.2.202.406-1.3 flash-player-gnome-11.2.202.548-111.1 flash-player-11.2.202.406-1.3 as a component of SUSE Linux Enterprise Desktop 12 flash-player-gnome-11.2.202.406-1.3 as a component of SUSE Linux Enterprise Desktop 12 flash-player-11.2.202.548-111.1 as a component of SUSE Linux Enterprise Desktop 12 SP1 flash-player-gnome-11.2.202.548-111.1 as a component of SUSE Linux Enterprise Desktop 12 SP1 flash-player-11.2.202.406-1.3 as a component of SUSE Linux Enterprise Workstation Extension 12 flash-player-gnome-11.2.202.406-1.3 as a component of SUSE Linux Enterprise Workstation Extension 12 flash-player-11.2.202.548-111.1 as a component of SUSE Linux Enterprise Workstation Extension 12 SP1 flash-player-gnome-11.2.202.548-111.1 as a component of SUSE Linux Enterprise Workstation Extension 12 SP1 Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, when Firefox or Chrome is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to URL parsing. CVE-2010-2179 SUSE Linux Enterprise Desktop 12:flash-player-11.2.202.406-1.3 SUSE Linux Enterprise Desktop 12:flash-player-gnome-11.2.202.406-1.3 SUSE Linux Enterprise Desktop 12 SP1:flash-player-11.2.202.548-111.1 SUSE Linux Enterprise Desktop 12 SP1:flash-player-gnome-11.2.202.548-111.1 SUSE Linux Enterprise Workstation Extension 12:flash-player-11.2.202.406-1.3 SUSE Linux Enterprise Workstation Extension 12:flash-player-gnome-11.2.202.406-1.3 SUSE Linux Enterprise Workstation Extension 12 SP1:flash-player-11.2.202.548-111.1 SUSE Linux Enterprise Workstation Extension 12 SP1:flash-player-gnome-11.2.202.548-111.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N