Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveAdobeCVE-2012-5285
HistoryNov 13, 2012 - 1:39 p.m.

CVE-2012-5285

2012-11-1313:39:47
CWE-119
adobe
web.nvd.nist.gov
35
cve-2012-5285
buffer overflow
adobe flash player
adobe air
security vulnerability
apsb12-22
arbitrary code execution
nvd

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.9

Confidence

Low

EPSS

0.028

Percentile

90.6%

JSON

Buffer overflow in Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 and 11.x before 11.2.202.243 on Linux, before 11.1.111.19 on Android 2.x and 3.x, and before 11.1.115.20 on Android 4.x; Adobe AIR before 3.4.0.2710; and Adobe AIR SDK before 3.4.0.2710 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than other Flash Player buffer overflow CVEs listed in APSB12-22.

Affected configurations

Nvd
Node
adobeflash_playerRange10.310.3.183.29
OR
adobeflash_playerRange11.411.4.402.287
AND
applemac_os_xMatch-
OR
microsoftwindowsMatch-
Node
adobeflash_playerRange10.310.3.183.29
OR
adobeflash_playerRange11.211.2.202.243
AND
linuxlinux_kernelMatch-
Node
adobeflash_playerRange11.111.1.111.19
AND
googleandroidRange2.02.3.7
OR
googleandroidRange3.03.2.6
Node
adobeflash_playerRange11.111.1.115.20
AND
googleandroidRange4.04.4.4
Node
adobeairRange<3.4.0.2710
OR
adobeair_sdkRange<3.4.0.2710
VendorProductVersionCPE
adobeflash_player*cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*
applemac_os_x-cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:*
microsoftwindows-cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
linuxlinux_kernel-cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
googleandroid*cpe:2.3:o:google:android:*:*:*:*:*:*:*:*
adobeair*cpe:2.3:a:adobe:air:*:*:*:*:*:*:*:*
adobeair_sdk*cpe:2.3:a:adobe:air_sdk:*:*:*:*:*:*:*:*

Related

ubuntucve 1
prion 1
cvelist 1
nvd 1
nessus 9
openvas 12
redhat 1
freebsd 1
ubuntucve
ubuntucve
CVE-2012-5285
2012-11-13 00:00:00
prion
prion
Buffer overflow
2012-11-13 13:39:00
cvelist
cvelist
CVE-2012-5285
2012-11-13 11:00:00
nvd
nvd
CVE-2012-5285
2012-11-13 13:39:47
nessus
nessus
Flash Player <= 10.3.183.23 / 11.4.402.278 Multiple Vulnerabilities (APSB12-22)
2012-10-10 00:00:00
RHEL 5 / 6 : flash-plugin (RHSA-2012:1346)
2012-10-10 00:00:00
Flash Player <= 11.4.402.278 Multiple Vulnerabilities (APSB12-22)
2011-10-11 00:00:00
openvas
openvas
Adobe Flash Player Multiple Vulnerabilities (Oct 2012) - Linux
2012-10-15 00:00:00
Adobe Flash Player Multiple Vulnerabilities - October 12 (Windows)
2012-10-15 00:00:00
Adobe Air Multiple Vulnerabilities (Oct 2012) - Windows
2013-03-28 00:00:00
redhat
redhat
(RHSA-2012:1346) Critical: flash-plugin security update
2012-10-09 00:00:00
freebsd
freebsd
linux-flashplugin -- multiple vulnerabilities
2012-10-08 00:00:00

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.9

Confidence

Low

EPSS

0.028

Percentile

90.6%

JSON
Related for CVE-2012-5285
ubuntucve1prion1cvelist1nvd1nessus9openvas12redhat1freebsd1