CVE-2010-3636 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2010-3636 Interim 1 6 2023-12-09T01:54:56Z current 2021-05-30T12:53:50Z 2023-12-09T01:54:56Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2010-3636 Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, does not properly handle unspecified encodings during the parsing of a cross-domain policy file, which allows remote web servers to bypass intended access restrictions via unknown vectors. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/O2UYDCNOV7GW34CFNEVDGD7H4UEJZFL5/#O2UYDCNOV7GW34CFNEVDGD7H4UEJZFL5 E-Mail link for SUSE-SA:2010:055 https://www.suse.com/support/security/rating/ SUSE Security Ratings Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris, and 10.1.95.1 on Android, does not properly handle unspecified encodings during the parsing of a cross-domain policy file, which allows remote web servers to bypass intended access restrictions via unknown vectors. CVE-2010-3636 critical 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C