CVE-2010-1297

KEV EPSS 92.84% · P100 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2010-1297

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64; Adobe AIR before 2.0.2.12610; and Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Windows and Mac OS X, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted SWF content, related to authplay.dll and the ActionScript Virtual Machine 2 (AVM2) newfunction instruction, as exploited in the wild in June 2010.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Adobe Flash Player/Reader/Acrobat AVM2 'newfunction()'远程代码执行漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Adobe Flash Player是美国奥多比（Adobe）公司的一款跨平台、基于浏览器的多媒体播放器产品。该产品支持跨屏幕和浏览器查看应用程序、内容和视频。Adobe Reader和Acrobat都是美国奥多比（Adobe）公司的产品。Adobe Reader是一款免费的PDF文件阅读器，Acrobat是一款PDF文件编辑和转换工具。 Adobe Flash Player 9.0.277.0之前版本和10.1.53.64之前的10.x版本，Adobe AIR 2.0.2.12610之前版本，以及基于W

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Shenlong Deep Dive — AI Deep Analysis

10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.

Read summary Full analysis (login)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2010-1297

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2010-1297

请登录查看更多情报信息。

http://community.websense.com/blogs/securitylabs/archive/2010/06/09/having-fun-with-adobe-0-day-exploits.aspxx_refsource_MISC
http://www.adobe.com/support/security/bulletins/apsb10-15.htmlx_refsource_CONFIRM
http://www.adobe.com/support/security/advisories/apsa10-01.htmlx_refsource_CONFIRM
http://support.apple.com/kb/HT4435x_refsource_CONFIRM
http://www.adobe.com/support/security/bulletins/apsb10-14.htmlx_refsource_CONFIRM
http://blog.zynamics.com/2010/06/09/analyzing-the-currently-exploited-0-day-for-adobe-reader-and-adobe-flash/x_refsource_MISC
http://secunia.com/advisories/40026third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/40545third-party-advisoryx_refsource_SECUNIA
http://www.osvdb.org/65141vdb-entryx_refsource_OSVDB
http://secunia.com/advisories/40034third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/40759vdb-entryx_refsource_BID
http://www.securityfocus.com/bid/40586vdb-entryx_refsource_BID
http://secunia.com/advisories/40144third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/43026third-party-advisoryx_refsource_SECUNIA
http://www.exploit-db.com/exploits/13787exploitx_refsource_EXPLOIT-DB
http://securitytracker.com/id?1024086vdb-entryx_refsource_SECTRACK
http://securitytracker.com/id?1024057vdb-entryx_refsource_SECTRACK
http://securitytracker.com/id?1024085vdb-entryx_refsource_SECTRACK
http://securitytracker.com/id?1024058vdb-entryx_refsource_SECTRACK
http://www.us-cert.gov/cas/techalerts/TA10-162A.htmlthird-party-advisoryx_refsource_CERT
http://www.kb.cert.org/vuls/id/486225third-party-advisoryx_refsource_CERT-VN
http://www.us-cert.gov/cas/techalerts/TA10-159A.htmlthird-party-advisoryx_refsource_CERT
http://itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02273751vendor-advisoryx_refsource_HP
http://www.turbolinux.co.jp/security/2010/TLSA-2010-19j.txtvendor-advisoryx_refsource_TURBO
http://www.vupen.com/english/advisories/2010/1482vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2010/1453vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2010/1432vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2010/1636vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2010/1522vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2010/1421vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2010/1434vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2011/0192vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2010/1348vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2010/1793vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2010/1349vdb-entryx_refsource_VUPEN
http://security.gentoo.org/glsa/glsa-201101-09.xmlvendor-advisoryx_refsource_GENTOO
http://www.redhat.com/support/errata/RHSA-2010-0464.htmlvendor-advisoryx_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2010-0470.htmlvendor-advisoryx_refsource_REDHAT
http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00000.htmlvendor-advisoryx_refsource_SUSE
http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.htmlvendor-advisoryx_refsource_APPLE
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7116vdb-entrysignaturex_refsource_OVAL
https://exchange.xforce.ibmcloud.com/vulnerabilities/59137vdb-entryx_refsource_XF
https://nvd.nist.gov/vuln/detail/CVE-2010-1297

Same Patch Batch · n/a · 2010-06-08 · 36 CVEs total

CVE-2010-1257		Microsoft IE toStaticHTML跨域信息泄露漏洞
CVE-2010-1248		Microsoft Office Excel HFPicture记录解析缓冲区溢出漏洞
CVE-2010-1249		Microsoft Office Excel ExternName记录解析缓冲区溢出漏洞
CVE-2010-1250		Microsoft Office Excel EDG和Publisher记录解析堆溢出漏洞
CVE-2010-1251		Microsoft Office Excel记录解析栈溢出漏洞
CVE-2010-1252		Microsoft Office Excel字符串解析未初始化变量漏洞
CVE-2010-1253		Microsoft Office Excel DBQueryExt记录ADO对象解析远程代码执行漏洞
CVE-2010-1254		Microsoft Office XML Converter for Mac本地权限提升漏洞
CVE-2010-1256		Microsoft IIS认证令牌处理远程代码执行漏洞
CVE-2010-1247		Microsoft Office Excel RTD记录解析堆缓冲区溢出漏洞
CVE-2010-1263		Microsoft Office COM对象验证远程代码执行漏洞
CVE-2010-1264		Microsoft SharePoint帮助页面远程拒绝服务漏洞
CVE-2004-2768		Debian dpkg权限许可和访问控制漏洞
CVE-2005-4889		RPM 'lib/fsm.c'权限许可和访问控制漏洞
CVE-2010-2059		RPM 'lib/fsm.c'可执行文件权限许可和访问控制问题漏洞
CVE-2010-2197		RPM rpmbuild权限许可和访问控制
CVE-2010-2198		RPM 'lib/fsm.c'权限提升和访问控制绕过漏洞
CVE-2010-2199		RPM 'lib/fsm.c'访问控制绕过漏洞
CVE-2010-1880		Microsoft Windows Media Decompression 远程代码执行漏洞
CVE-2010-0485		Windows Win32k.sys驱动创建窗口权限提升漏洞

Showing top 20 of 36 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2010-1297

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2010-1297

I. Basic Information for CVE-2010-1297

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Shenlong Deep Dive — AI Deep Analysis

Affected Products

II. Public POCs for CVE-2010-1297

III. Intelligence Information for CVE-2010-1297

Same Patch Batch · n/a · 2010-06-08 · 36 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2010-1297

Leave a comment