CVE-2011-2140
EXPLOITEDAdobe Flash Player <10.3.183.5 - Memory Corruption
Title source: llmDescription
Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1 on Windows and Mac OS X and before 2.7.1.1961 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-2135, CVE-2011-2417, and CVE-2011-2425.
Exploits (3)
exploitdb
WORKING POC
VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/18479
exploitdb
WORKING POC
VERIFIED
by Abysssec · textremotewindows
https://www.exploit-db.com/exploits/18437
metasploit
WORKING POC
NORMAL
by Alexander Gavrun, Unknown, sinn3r · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/adobe_flash_sps.rb
References (8)
Scores
EPSS
0.8932
EPSS Percentile
99.5%
Details
VulnCheck KEV
2012-02-10
CWE
CWE-119
Status
published
Products (50)
adobe/adobe_air
1.0
adobe/adobe_air
1.1
adobe/adobe_air
1.5
adobe/adobe_air
1.5.2
adobe/adobe_air
1.5.3
adobe/adobe_air
2.0.2
adobe/adobe_air
2.0.3
adobe/adobe_air
2.0.4
adobe/adobe_air
2.6
adobe/adobe_air
< 2.7
... and 40 more
Published
Aug 10, 2011
Tracked Since
Feb 18, 2026