PT-2012-2858 · Adobe · Flash Player+1
Published
2012-03-28
·
Updated
2018-10-30
·
CVE-2012-0772
CVSS v2.0
10
High
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Adobe Flash Player versions prior to 10.3.183.18
Adobe Flash Player versions 11.x prior to 11.2.202.228
Adobe AIR versions prior to 3.2.0.2070
Description
The issue is related to an unspecified ActiveX control that does not properly perform URL security domain checking. This can allow attackers to execute arbitrary code or cause a denial of service due to memory corruption via unknown vectors.
Recommendations
For Adobe Flash Player versions prior to 10.3.183.18, update to version 10.3.183.18 or later.
For Adobe Flash Player versions 11.x prior to 11.2.202.228, update to version 11.2.202.228 or later.
For Adobe AIR versions prior to 3.2.0.2070, update to version 3.2.0.2070 or later.
Fix
DoS
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Air
Flash Player