Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2012-5261

Опубликовано: 09 окт. 2012
Источник: nvd
CVSS2: 10
EPSS Низкий

Уязвимость переполнения буфера в Adobe Flash Player и Adobe AIR, позволяющая осуществлять DoS атаку или выполнять произвольный код

Описание

В Adobe Flash Player и Adobe AIR обнаружена уязвимость, которая позволяет злоумышленникам выполнять произвольный код или вызвать DoS атаку через повреждение памяти. Эта уязвимость возникла из-за неконкретных векторов, отличных от других уязвимостей повреждения памяти в Flash Player, перечисленных в APSB12-22.

Затронутые версии ПО

  • Adobe Flash Player версий до 10.3.183.29 и 11.x до 11.4.402.287 на Windows и Mac OS X
  • Adobe Flash Player версий до 10.3.183.29 и 11.x до 11.2.202.243 на Linux
  • Adobe Flash Player версий до 11.1.111.19 на Android 2.x и 3.x
  • Adobe Flash Player версий до 11.1.115.20 на Android 4.x
  • Adobe AIR версий до 3.4.0.2710
  • Adobe AIR SDK версий до 3.4.0.2710

Тип уязвимости

  • Выполнение произвольного кода
  • DoS атака (повреждение памяти)

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*
Версия до 10.3.183.25 (включая)
cpe:2.3:a:adobe:flash_player:10.1.85.3:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.1.102.64:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.2.152.26:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.2.152.32:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.2.153.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.2.159.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.181.14:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.181.16:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.181.22:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.181.26:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.181.34:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.183.5:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.183.7:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.183.10:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.183.11:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.183.15:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.183.16:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.183.18:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.183.20:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.183.23:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.0.1.152:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.1.102.55:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.1.102.62:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.1.102.63:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.223:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.228:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.233:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.235:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.238:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.243:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.3.300.257:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.3.300.262:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.3.300.265:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.3.300.268:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.3.300.271:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.3.300.273:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.4.402.265:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.4.402.278:*:*:*:*:*:*:*

Одно из

cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
Конфигурация 2

Одновременно

Одно из

cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*
Версия до 10.3.183.25 (включая)
cpe:2.3:a:adobe:flash_player:10.1.85.3:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.1.102.64:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.2.152.26:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.2.152.32:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.2.153.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.2.159.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.181.14:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.181.16:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.181.22:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.181.26:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.181.34:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.183.5:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.183.7:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.183.10:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.183.11:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.183.15:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.183.16:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.183.18:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.183.20:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:10.3.183.23:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.0.1.152:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.1.102.55:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.1.102.62:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.1.102.63:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.223:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.228:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.233:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.235:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player:11.2.202.238:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Конфигурация 3

Одновременно

Одно из

cpe:2.3:a:adobe:flash_player_for_android:*:*:*:*:*:*:*:*
Версия до 11.1.111.16 (включая)
cpe:2.3:a:adobe:flash_player_for_android:10.1.106.17:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player_for_android:10.2.157.51:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player_for_android:10.3.186.7:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player_for_android:11.0.1.153:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player_for_android:11.1.102.59:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player_for_android:11.1.111.5:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player_for_android:11.1.111.7:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player_for_android:11.1.111.8:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player_for_android:11.1.111.9:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player_for_android:11.1.111.10:*:*:*:*:*:*:*

Одно из

cpe:2.3:o:google:android:2.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:2.0.1:*:*:*:*:*:*:*
cpe:2.3:o:google:android:2.1:*:*:*:*:*:*:*
cpe:2.3:o:google:android:2.2:*:*:*:*:*:*:*
cpe:2.3:o:google:android:2.2:rev1:*:*:*:*:*:*
cpe:2.3:o:google:android:2.2.1:*:*:*:*:*:*:*
cpe:2.3:o:google:android:2.2.2:*:*:*:*:*:*:*
cpe:2.3:o:google:android:2.2.3:*:*:*:*:*:*:*
cpe:2.3:o:google:android:2.3:*:*:*:*:*:*:*
cpe:2.3:o:google:android:2.3:rev1:*:*:*:*:*:*
cpe:2.3:o:google:android:2.3.1:*:*:*:*:*:*:*
cpe:2.3:o:google:android:2.3.2:*:*:*:*:*:*:*
cpe:2.3:o:google:android:2.3.3:*:*:*:*:*:*:*
cpe:2.3:o:google:android:2.3.4:*:*:*:*:*:*:*
cpe:2.3:o:google:android:2.3.5:*:*:*:*:*:*:*
cpe:2.3:o:google:android:2.3.6:*:*:*:*:*:*:*
cpe:2.3:o:google:android:2.3.7:*:*:*:*:*:*:*
cpe:2.3:o:google:android:3.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:3.1:*:*:*:*:*:*:*
cpe:2.3:o:google:android:3.2:*:*:*:*:*:*:*
cpe:2.3:o:google:android:3.2.1:*:*:*:*:*:*:*
cpe:2.3:o:google:android:3.2.2:*:*:*:*:*:*:*
cpe:2.3:o:google:android:3.2.4:*:*:*:*:*:*:*
cpe:2.3:o:google:android:3.2.6:*:*:*:*:*:*:*
Конфигурация 4

Одновременно

Одно из

cpe:2.3:a:adobe:flash_player_for_android:*:*:*:*:*:*:*:*
Версия до 11.1.115.17 (включая)
cpe:2.3:a:adobe:flash_player_for_android:11.1.112.60:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player_for_android:11.1.112.61:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player_for_android:11.1.115.7:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player_for_android:11.1.115.8:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player_for_android:11.1.115.11:*:*:*:*:*:*:*
cpe:2.3:a:adobe:flash_player_for_android:11.1.115.12:*:*:*:*:*:*:*

Одно из

cpe:2.3:o:google:android:4.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:4.0.1:*:*:*:*:*:*:*
cpe:2.3:o:google:android:4.0.2:*:*:*:*:*:*:*
cpe:2.3:o:google:android:4.0.3:*:*:*:*:*:*:*
cpe:2.3:o:google:android:4.0.4:*:*:*:*:*:*:*
cpe:2.3:o:google:android:4.1:*:*:*:*:*:*:*
Конфигурация 5

Одно из

cpe:2.3:a:adobe:adobe_air:*:*:*:*:*:*:*:*
Версия до 3.4.0.2540 (включая)
cpe:2.3:a:adobe:adobe_air:1.0:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:1.0.8.4990:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:1.0.4990:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:1.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:1.1.0.5790:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:1.5:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:1.5.0.7220:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:1.5.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:1.5.1.8210:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:1.5.2:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:1.5.3:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:1.5.3.9120:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:1.5.3.9130:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:2.0.2.12610:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:2.0.3:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:2.0.3.13070:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:2.0.4:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:2.5.0.16600:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:2.5.1.17730:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:2.6:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:2.6.0.19120:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:2.6.0.19140:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:2.7:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:2.7.0.1948:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:2.7.0.1953:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:2.7.0.19480:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:2.7.0.19530:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:2.7.1:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:2.7.1.19610:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:3.0.0.408:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:3.0.0.4080:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:3.1.0.485:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:3.1.0.488:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:3.1.0.4880:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:3.2.0.207:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:3.2.0.2070:*:*:*:*:*:*:*
cpe:2.3:a:adobe:adobe_air:3.3.0.3670:*:*:*:*:*:*:*
Конфигурация 6
cpe:2.3:a:adobe:adobe_air_sdk:*:*:*:*:*:*:*:*
Версия до 3.4.0.2540 (включая)

EPSS

Процентиль: 91%
0.06135
Низкий

10 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

ubuntu логотип

CVE-2012-5261

ubuntu
больше 13 лет назад

Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 and 11.x before 11.2.202.243 on Linux, before 11.1.111.19 on Android 2.x and 3.x, and before 11.1.115.20 on Android 4.x; Adobe AIR before 3.4.0.2710; and Adobe AIR SDK before 3.4.0.2710 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than other Flash Player memory corruption CVEs listed in APSB12-22.

redhat логотип

CVE-2012-5261

redhat
больше 13 лет назад

Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 and 11.x before 11.2.202.243 on Linux, before 11.1.111.19 on Android 2.x and 3.x, and before 11.1.115.20 on Android 4.x; Adobe AIR before 3.4.0.2710; and Adobe AIR SDK before 3.4.0.2710 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than other Flash Player memory corruption CVEs listed in APSB12-22.

github логотип

GHSA-5ffh-rmm5-wpcf

github
больше 3 лет назад

Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 and 11.x before 11.2.202.243 on Linux, before 11.1.111.19 on Android 2.x and 3.x, and before 11.1.115.20 on Android 4.x; Adobe AIR before 3.4.0.2710; and Adobe AIR SDK before 3.4.0.2710 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than other Flash Player memory corruption CVEs listed in APSB12-22.

EPSS

Процентиль: 91%
0.06135
Низкий

10 Critical

CVSS2

Дефекты

CWE-119