PT-2012-5881 · Adobe+2 · Flash Player+4

Publicado

2012-11-07

·

Atualizado

2018-12-04

·

CVE-2012-5278

CVSS v2.0

10

Alta

VetorAV:N/AC:L/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Adobe Flash Player versions prior to 10.3.183.43 and 11.x prior to 11.5.502.110 on Windows and Mac OS X Adobe Flash Player versions prior to 10.3.183.43 and 11.x prior to 11.2.202.251 on Linux Adobe Flash Player versions prior to 11.1.111.24 on Android 2.x and 3.x Adobe Flash Player versions prior to 11.1.115.27 on Android 4.x Adobe AIR versions prior to 3.5.0.600 Adobe AIR SDK versions prior to 3.5.0.600
Description The issue allows attackers to bypass intended access restrictions and execute arbitrary code via unspecified vectors.
Recommendations For Adobe Flash Player versions prior to 10.3.183.43 and 11.x prior to 11.5.502.110 on Windows and Mac OS X, update to version 10.3.183.43 or 11.5.502.110 or later. For Adobe Flash Player versions prior to 10.3.183.43 and 11.x prior to 11.2.202.251 on Linux, update to version 10.3.183.43 or 11.2.202.251 or later. For Adobe Flash Player versions prior to 11.1.111.24 on Android 2.x and 3.x, update to version 11.1.111.24 or later. For Adobe Flash Player versions prior to 11.1.115.27 on Android 4.x, update to version 11.1.115.27 or later. For Adobe AIR versions prior to 3.5.0.600, update to version 3.5.0.600 or later. For Adobe AIR SDK versions prior to 3.5.0.600, update to version 3.5.0.600 or later.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-264

Identificadores relacionados

CVE-2012-5278
OPENSUSE-SU-2012_1480-1
OPENSUSE-SU-2013_0134-1
OPENSUSE-SU-2013_0367-1
RHSA-2012:1431
RHSA-2012_1431

Produtos afetados

Air
Air Sdk
Flash Player
Red Hat
Suse