Exploitation Summary
CVE-2010-3654 has been observed exploited in the wild (reported by VulnCheck KEV, InTheWild.io).
EIP tracks 3 public exploits from researchers including Abysssec, Metasploit, Unknown, Haifei Li, jduck, including a Metasploit module exploits/windows/fileformat/adobe_flashplayer_button.
AI-analyzed exploit summary This exploit leverages a type confusion vulnerability in Adobe Flash Player to bypass DEP and ASLR on Windows 7. It uses multiple stages to leak memory addresses and execute a ROP payload, ultimately achieving remote code execution.
Description
Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris and 10.1.95.1 on Android, and authplay.dll (aka AuthPlayLib.bundle or libauthplay.so.0.0.0) in Adobe Reader and Acrobat 9.x through 9.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via crafted SWF content, as exploited in the wild in October 2010.
Exploits (3)
This exploit leverages a type confusion vulnerability in Adobe Flash Player to bypass DEP and ASLR on Windows 7. It uses multiple stages to leak memory addresses and execute a ROP payload, ultimately achieving remote code execution.
This Metasploit module exploits CVE-2010-3654, a vulnerability in Adobe Flash Player (versions 9.x and 10.0) and Adobe Reader/Acrobat. It embeds a malicious SWF file in a PDF, using AcroJS heap spraying and a DEP bypass via BIB.dll to achieve remote code execution.
This Metasploit module exploits CVE-2010-3654, a vulnerability in Adobe Flash Player versions 9.x and 10.0, by embedding a crafted SWF file in a PDF. It uses AcroJS heap spraying and a DEP bypass via BIB.dll to achieve arbitrary code execution.