PT-2012-3751 · Adobe+2 · Air+3
Published
2012-06-09
·
Updated
2021-09-08
·
CVE-2012-2036
CVSS v2.0
9.3
High
| Vector | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Adobe Flash Player versions prior to 10.3.183.20 and 11.x prior to 11.3.300.257 on Windows and Mac OS X
Adobe Flash Player versions prior to 10.3.183.20 and 11.x prior to 11.2.202.236 on Linux
Adobe Flash Player versions prior to 11.1.111.10 on Android 2.x and 3.x
Adobe Flash Player versions prior to 11.1.115.9 on Android 4.x
Adobe AIR versions prior to 3.3.0.3610
Description
The issue allows attackers to execute arbitrary code via unspecified vectors due to an integer overflow.
Recommendations
For Adobe Flash Player on Windows and Mac OS X, update to version 10.3.183.20 or 11.3.300.257 or later.
For Adobe Flash Player on Linux, update to version 10.3.183.20 or 11.2.202.236 or later.
For Adobe Flash Player on Android 2.x and 3.x, update to version 11.1.111.10 or later.
For Adobe Flash Player on Android 4.x, update to version 11.1.115.9 or later.
For Adobe AIR, update to version 3.3.0.3610 or later.
Fix
Integer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Air
Flash Player
Red Hat
Suse