{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Adobe Flash Player 10.1.95.1 pour Android.","product":{"name":"N/A","vendor":{"name":"Adobe","scada":false}}},{"description":"Adobe Flash Player 10.1.85.3 et versions ant\u00e9rieures pour Windows, Macintosh, Linux et Solaris ;","product":{"name":"N/A","vendor":{"name":"Adobe","scada":false}}}],"affected_systems_content":null,"content":"## Description\n\nPlusieurs vuln\u00e9rabilit\u00e9s dans Adobe Flash Player ont \u00e9t\u00e9 d\u00e9couvertes :\n\n-   Plusieurs corruptions de la m\u00e9moire permettent d'ex\u00e9cuter du code\n    arbitraire \u00e0 distance (CVE-2010-3654, CVE-2010-3637, CVE-2010-3640,\n    CVE-2010-3641, CVE-2010-3642, CVE-2010-3643, CVE-2010-3644,\n    CVE-2010-3645, CVE-2010-3646, CVE-2010-3647, CVE-2010-3648,\n    CVE-2010-3649, CVE-2010-3650, CVE-2010-3652) ;\n-   une erreur de validation permet de contourner la politique de\n    restriction d'acc\u00e8s \u00e0 certains fichiers (CVE-2010-3636) ;\n-   une vuln\u00e9rabilit\u00e9 permettant de porter atteinte \u00e0 la confidentialit\u00e9\n    des donn\u00e9es existe dans la version Macintosh pour le navigateur\n    Safari du lecteur (CVE-2010-3638) ;\n-   une vuln\u00e9rabilit\u00e9 peremet de provoquer \u00e0 minima un d\u00e9ni de service\n    (CVE-2010-3639).\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2010-3642","url":"https://www.cve.org/CVERecord?id=CVE-2010-3642"},{"name":"CVE-2010-3638","url":"https://www.cve.org/CVERecord?id=CVE-2010-3638"},{"name":"CVE-2010-3640","url":"https://www.cve.org/CVERecord?id=CVE-2010-3640"},{"name":"CVE-2010-3646","url":"https://www.cve.org/CVERecord?id=CVE-2010-3646"},{"name":"CVE-2010-3639","url":"https://www.cve.org/CVERecord?id=CVE-2010-3639"},{"name":"CVE-2010-3654","url":"https://www.cve.org/CVERecord?id=CVE-2010-3654"},{"name":"CVE-2010-3643","url":"https://www.cve.org/CVERecord?id=CVE-2010-3643"},{"name":"CVE-2010-3650","url":"https://www.cve.org/CVERecord?id=CVE-2010-3650"},{"name":"CVE-2010-3644","url":"https://www.cve.org/CVERecord?id=CVE-2010-3644"},{"name":"CVE-2010-3647","url":"https://www.cve.org/CVERecord?id=CVE-2010-3647"},{"name":"CVE-2010-3637","url":"https://www.cve.org/CVERecord?id=CVE-2010-3637"},{"name":"CVE-2010-3649","url":"https://www.cve.org/CVERecord?id=CVE-2010-3649"},{"name":"CVE-2010-3636","url":"https://www.cve.org/CVERecord?id=CVE-2010-3636"},{"name":"CVE-2010-3645","url":"https://www.cve.org/CVERecord?id=CVE-2010-3645"},{"name":"CVE-2010-3648","url":"https://www.cve.org/CVERecord?id=CVE-2010-3648"},{"name":"CVE-2010-3976","url":"https://www.cve.org/CVERecord?id=CVE-2010-3976"},{"name":"CVE-2010-3641","url":"https://www.cve.org/CVERecord?id=CVE-2010-3641"},{"name":"CVE-2010-3652","url":"https://www.cve.org/CVERecord?id=CVE-2010-3652"}],"links":[],"reference":"CERTA-2010-AVI-538","revisions":[{"description":"version initiale.","revision_date":"2010-11-05T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s dans Adobe Flash Player permettent, entre\nautre, \u00e0 une personne distante malintentionn\u00e9e d'ex\u00e9cuter du code\narbitraire \u00e0 distance.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans Adobe Flash Player","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Adobe APSB10-26 du 04 novembre 2010","url":"http://www.adobe.com/support/security/bulletins/apsb10-26.html"}]}