CVE-2011-0611

Name: CVE-2011-0611
Creator: NVD / NIST
Published: 2011-04-13T14:55:01.217+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

HIGHCVSS 8.8/10Actively ExploitedEPSS 99.41%

Last modified Jun 16, 2026

CVE-2011-0611 is a high-severity vulnerability rated 8.8/10 on the CVSS scale. Adobe Flash Player before 10.2.154.27 on Windows, Mac OS X, Linux, and Solaris and 10.2.156.12 and earlier on Android; Adobe AIR before 2.6.19140; and Authplay.dll (aka AuthPlayLib.bundle) in Adobe Reader 9.x before 9.4.4 and 10.x through 10.0.1 on Windows, Adobe Reader 9.x before 9.4.4 and 10.x before 10.0.3 on Mac OS X, and Adobe Acrobat 9.x before 9.4.4 and 10.x before 10.0.3 on Windows and Mac OS X allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted Flash content; as demonstrated by a Microsoft Office document with an embedded .swf file that has a size inconsistency in a "group of included constants," object type confusion, ActionScript that adds custom functions to prototypes, and Date objects; and as exploited in the wild in April 2011.. CISA has confirmed active exploitation in the wild. EPSS estimates a 99.41% chance of exploitation in the next 30 days.

Description

Adobe Flash Player before 10.2.154.27 on Windows, Mac OS X, Linux, and Solaris and 10.2.156.12 and earlier on Android; Adobe AIR before 2.6.19140; and Authplay.dll (aka AuthPlayLib.bundle) in Adobe Reader 9.x before 9.4.4 and 10.x through 10.0.1 on Windows, Adobe Reader 9.x before 9.4.4 and 10.x before 10.0.3 on Mac OS X, and Adobe Acrobat 9.x before 9.4.4 and 10.x before 10.0.3 on Windows and Mac OS X allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted Flash content; as demonstrated by a Microsoft Office document with an embedded .swf file that has a size inconsistency in a "group of included constants," object type confusion, ActionScript that adds custom functions to prototypes, and Date objects; and as exploited in the wild in April 2011.

Metrics

CVSS 3.1

8.8/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS Probability

99.41%

99.9th percentile

Probability of exploitation in the next 30 days. Learn more

Exploitation Status

This vulnerability is listed in CISA’s Known Exploited Vulnerabilities catalog, confirming active exploitation in the wild. Federal agencies must remediate by Mar 24, 2022.

Weakness Enumeration

Affected Software

Vendor	Product	Versions	Update
Adobe	Flash Player	< 10.2.154.27	—
Adobe	Flash Player	<= 10.2.156.12	—
Adobe	Acrobat Reader	>= 9.0, < 9.4.4	—
Adobe	Acrobat Reader	>= 10.0, <= 10.0.1	—
Adobe	Adobe Air	< 2.6.19140	—
Adobe	Acrobat Reader	>= 10.0, < 10.0.3	—
Adobe	Acrobat	>= 9.0, < 9.4	—
Adobe	Acrobat	>= 10.0, < 10.0.3	—
Google	Chrome	< 10.0.648.205	—
Opensuse	Opensuse	11.2	—
Opensuse	Opensuse	11.3	—
Opensuse	Opensuse	11.4	—
Suse	Linux Enterprise Desktop	10	Sp4
Suse	Linux Enterprise Desktop	11	Sp1

References

http://blogs.technet.com/b/mmpc/archive/2011/04/12/analysis-of-the-cve-2011-0611-adobe-flash-player-vulnerability-exploitation.aspxNot Applicable
http://bugix-security.blogspot.com/2011/04/cve-2011-0611-adobe-flash-zero-day.htmlExploit
http://contagiodump.blogspot.com/2011/04/apr-8-cve-2011-0611-flash-player-zero.htmlExploit, Issue Tracking
http://googlechromereleases.blogspot.com/2011/04/stable-channel-update.htmlRelease Notes
http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00004.htmlMailing List, Patch
http://secunia.com/advisories/44119Broken Link, Vendor Advisory
http://secunia.com/advisories/44141Broken Link, Vendor Advisory
http://secunia.com/advisories/44149Broken Link, Vendor Advisory
http://secunia.com/blog/210/Broken Link, Vendor Advisory
http://securityreason.com/securityalert/8204Third Party Advisory
http://securityreason.com/securityalert/8292Third Party Advisory
http://www.adobe.com/support/security/advisories/apsa11-02.htmlBroken Link, Vendor Advisory
http://www.adobe.com/support/security/bulletins/apsb11-07.htmlBroken Link, Vendor Advisory
http://www.adobe.com/support/security/bulletins/apsb11-08.htmlBroken Link, Vendor Advisory
http://www.exploit-db.com/exploits/17175Exploit, Third Party Advisory, VDB Entry
http://www.kb.cert.org/vuls/id/230057Broken Link, Third Party Advisory, US Government Resource
http://www.redhat.com/support/errata/RHSA-2011-0451.htmlBroken Link, Vendor Advisory
http://www.securityfocus.com/bid/47314Broken Link, Third Party Advisory, VDB Entry
http://www.securitytracker.com/id?1025324Broken Link, Third Party Advisory, VDB Entry
http://www.securitytracker.com/id?1025325Broken Link, Third Party Advisory, VDB Entry
http://www.vupen.com/english/advisories/2011/0922Broken Link, Vendor Advisory
http://www.vupen.com/english/advisories/2011/0923Broken Link, Vendor Advisory
http://www.vupen.com/english/advisories/2011/0924Broken Link, Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/66681Third Party Advisory, VDB Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14175Broken Link
http://blogs.technet.com/b/mmpc/archive/2011/04/12/analysis-of-the-cve-2011-0611-adobe-flash-player-vulnerability-exploitation.aspxNot Applicable
http://bugix-security.blogspot.com/2011/04/cve-2011-0611-adobe-flash-zero-day.htmlExploit
http://contagiodump.blogspot.com/2011/04/apr-8-cve-2011-0611-flash-player-zero.htmlExploit, Issue Tracking
http://googlechromereleases.blogspot.com/2011/04/stable-channel-update.htmlRelease Notes
http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00004.htmlMailing List, Patch
http://secunia.com/advisories/44119Broken Link, Vendor Advisory
http://secunia.com/advisories/44141Broken Link, Vendor Advisory
http://secunia.com/advisories/44149Broken Link, Vendor Advisory
http://secunia.com/blog/210/Broken Link, Vendor Advisory
http://securityreason.com/securityalert/8204Third Party Advisory
http://securityreason.com/securityalert/8292Third Party Advisory
http://www.adobe.com/support/security/advisories/apsa11-02.htmlBroken Link, Vendor Advisory
http://www.adobe.com/support/security/bulletins/apsb11-07.htmlBroken Link, Vendor Advisory
http://www.adobe.com/support/security/bulletins/apsb11-08.htmlBroken Link, Vendor Advisory
http://www.exploit-db.com/exploits/17175Exploit, Third Party Advisory, VDB Entry
http://www.kb.cert.org/vuls/id/230057Broken Link, Third Party Advisory, US Government Resource
http://www.redhat.com/support/errata/RHSA-2011-0451.htmlBroken Link, Vendor Advisory
http://www.securityfocus.com/bid/47314Broken Link, Third Party Advisory, VDB Entry
http://www.securitytracker.com/id?1025324Broken Link, Third Party Advisory, VDB Entry
http://www.securitytracker.com/id?1025325Broken Link, Third Party Advisory, VDB Entry
http://www.vupen.com/english/advisories/2011/0922Broken Link, Vendor Advisory
http://www.vupen.com/english/advisories/2011/0923Broken Link, Vendor Advisory
http://www.vupen.com/english/advisories/2011/0924Broken Link, Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/66681Third Party Advisory, VDB Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14175Broken Link
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2011-0611US Government Resource

Timeline

Published: Apr 13, 2011
Last Modified: Jun 16, 2026
Status: Analyzed

Frequently Asked Questions

What is CVE-2011-0611?

How severe is CVE-2011-0611?

CVE-2011-0611 has a CVSS score of 8.8/10 (HIGH severity). The EPSS model estimates a 99.41% probability of exploitation in the next 30 days. This vulnerability is listed in CISA's Known Exploited Vulnerabilities catalog.

How do I fix CVE-2011-0611?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2011-0611?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST