PT-2012-2865 · Adobe+2 · Flash Player+2

Published

2012-05-04

Updated

2019-07-18

CVE-2012-0779

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Adobe Flash Player versions prior to 10.3.183.19 Adobe Flash Player versions 11.x prior to 11.2.202.235 Adobe Flash Player versions prior to 11.1.111.9 on Android 2.x and 3.x Adobe Flash Player versions prior to 11.1.115.8 on Android 4.x

Description The issue allows remote attackers to execute arbitrary code via a crafted file, related to an object confusion vulnerability. This vulnerability has been exploited in the wild.

Recommendations For Adobe Flash Player versions prior to 10.3.183.19, update to version 10.3.183.19 or later. For Adobe Flash Player versions 11.x prior to 11.2.202.235, update to version 11.2.202.235 or later. For Adobe Flash Player versions prior to 11.1.111.9 on Android 2.x and 3.x, update to version 11.1.111.9 or later. For Adobe Flash Player versions prior to 11.1.115.8 on Android 4.x, update to version 11.1.115.8 or later.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2012-0779

OPENSUSE-SU-2012_0594-1

RHSA-2012:0688

RHSA-2012_0688

SUSE-SU-2012_0592-1

SUSE-SU-2012_0592-2

Affected Products

Flash Player

Red Hat

Suse

PT-2012-2865 · Adobe+2 · Flash Player+2

CVE-2012-0779

Related Identifiers

Affected Products

References · 27