CVE-2010-2217

Adobe Flash Media Server < 3.0.6 and 3.5.x < 3.5.4 - Remote Code Execution via JS Method

Title source: llm
STIX 2.1

Description

Adobe Flash Media Server (FMS) before 3.0.6, and 3.5.x before 3.5.4, allows attackers to execute arbitrary code via unspecified vectors, related to a "JS method vulnerability."

References (1)

Core 1
Core References
Patch, Vendor Advisory x_refsource_confirm
http://www.adobe.com/support/security/bulletins/apsb10-19.html

Scores

EPSS 0.0452
EPSS Percentile 90.4%

Details

CWE
CWE-94
Status published
Products (18)
adobe/flash_media_server 2.0
adobe/flash_media_server 2.0.1
adobe/flash_media_server 2.0.2
adobe/flash_media_server 2.0.3
adobe/flash_media_server 2.0.4
adobe/flash_media_server 2.0.5
adobe/flash_media_server 3.0
adobe/flash_media_server 3.0.1
adobe/flash_media_server 3.0.2
adobe/flash_media_server 3.0.3
... and 8 more
Published Aug 11, 2010
Tracked Since Feb 18, 2026