CVE-2011-2140

EXPLOITED

Adobe Flash Player <10.3.183.5 - Memory Corruption

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2011-2140 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 3 public exploits from researchers including Metasploit, Abysssec, Alexander Gavrun, Unknown, sinn3r, including a Metasploit module exploits/windows/browser/adobe_flash_sps.

AI-analyzed exploit summary This Metasploit module exploits a buffer overflow vulnerability in Adobe Flash Player's handling of MP4 files (CVE-2011-2140). It leverages a crafted MP4 file to achieve arbitrary code execution via heap spraying and a malicious SWF player.

Description

Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1 on Windows and Mac OS X and before 2.7.1.1961 on Android, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-2135, CVE-2011-2417, and CVE-2011-2425.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/18479

This Metasploit module exploits a buffer overflow vulnerability in Adobe Flash Player's handling of MP4 files (CVE-2011-2140). It leverages a crafted MP4 file to achieve arbitrary code execution via heap spraying and a malicious SWF player.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Adobe Flash Player (Flash10u.ocx)
No auth needed
Prerequisites: Victim must visit a malicious webpage hosting the exploit · Requires a SWF media player to trigger the vulnerability
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Abysssec · textremotewindows
https://www.exploit-db.com/exploits/18437

This exploit targets CVE-2011-2140, a vulnerability in Adobe Flash Player <= 10.3.181.34. It uses heap spraying and a malformed MP4 file to achieve remote code execution (RCE) by exploiting a memory corruption issue.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Adobe Flash Player <= 10.3.181.34
No auth needed
Prerequisites: Victim must open a malicious MP4 file or visit a crafted webpage
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC NORMAL
by Alexander Gavrun, Unknown, sinn3r · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/adobe_flash_sps.rb

This Metasploit module exploits a buffer overflow vulnerability in Adobe Flash Player's handling of MP4 files (CVE-2011-2140). It delivers a malicious MP4 file via an HTTP server, triggering arbitrary code execution through heap spraying and shellcode injection.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Adobe Flash Player (Flash10u.ocx)
No auth needed
Prerequisites: Victim must visit a malicious webpage hosting the exploit · Adobe Flash Player with vulnerable version installed
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (8)

Core 8
Core References
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14074
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/48308
US Government Resource third-party-advisory x_refsource_cert
http://www.us-cert.gov/cas/techalerts/TA11-222A.html
Patch, Vendor Advisory x_refsource_confirm
http://www.adobe.com/support/security/bulletins/apsb11-21.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2011-1144.html

Scores

EPSS 0.8932
EPSS Percentile 99.6%

Details

VulnCheck KEV 2012-02-10
CWE
CWE-119
Status published
Products (50)
adobe/adobe_air 1.0
adobe/adobe_air 1.1
adobe/adobe_air 1.5
adobe/adobe_air 1.5.2
adobe/adobe_air 1.5.3
adobe/adobe_air 2.0.2
adobe/adobe_air 2.0.3
adobe/adobe_air 2.0.4
adobe/adobe_air 2.6
adobe/adobe_air < 2.7
... and 40 more
Published Aug 10, 2011
Tracked Since Feb 18, 2026