Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
gentooGentoo FoundationGLSA-201206-21
HistoryJun 23, 2012 - 12:00 a.m.

Adobe Flash Player: Multiple vulnerabilities

2012-06-2300:00:00
Gentoo Foundation
security.gentoo.org
16

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.714 High

EPSS

Percentile

98.0%

JSON

Background

The Adobe Flash Player is a renderer for the SWF file format, which is commonly used to provide interactive websites.

Description

Multiple vulnerabilities have been discovered in Adobe Flash Player. Please review the CVE identifiers referenced below for details.

Impact

A remote attacker could entice a user to open a specially crafted SWF file, possibly resulting in execution of arbitrary code with the privileges of the process or a Denial of Service condition.

Workaround

There is no known workaround at this time.

Resolution

All Adobe Flash Player users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose
 ">=www-plugins/adobe-flash-11.2.202.236"
OSVersionArchitecturePackageVersionFilename
Gentooanyallwww-plugins/adobe-flash< 11.2.202.236UNKNOWN

Related

nessus 18
openvas 26
freebsd 2
suse 5
redhat 2
prion 8
cve 8
ubuntucve 8
attackerkb 2
checkpoint_advisories 7
cisa_kev 1
jvn 1
seebug 3
symantec 1
metasploit 1
saint 4
packetstorm 1
threatpost 3
securityvulns 1
exploitdb 1
thn 1
myhack58 1
nessus
nessus
GLSA-201206-21 : Adobe Flash Player: Multiple vulnerabilities
2012-06-25 00:00:00
Flash Player for Mac <= 10.3.183.19 / 11.3.300.256 Multiple Vulnerabilities (APSB12-14)
2012-06-09 00:00:00
FreeBSD : linux-flashplugin -- multiple vulnerabilities (38195f00-b215-11e1-8132-003067b2972c)
2012-06-11 00:00:00
openvas
openvas
SuSE Update for flash-player openSUSE-SU-2012:0723-1 (flash-player)
2012-12-13 00:00:00
Gentoo Security Advisory GLSA 201206-21 (Adobe Flash Player)
2012-08-10 00:00:00
Gentoo Security Advisory GLSA 201206-21 (Adobe Flash Player)
2012-08-10 00:00:00
freebsd
freebsd
linux-flashplugin -- multiple vulnerabilities
2012-06-08 00:00:00
linux-flashplugin -- multiple vulnerabilities
2012-10-08 00:00:00
suse
suse
Security update for flash-player (critical)
2012-06-11 20:08:29
flash-player: Update to 11.2.202.236 security release (critical)
2012-06-11 16:08:38
update for flash-player (critical)
2012-05-08 14:08:27
redhat
redhat
(RHSA-2012:0722) Critical: flash-plugin security update
2012-06-12 00:00:00
(RHSA-2012:0688) Critical: flash-plugin security update
2012-05-23 00:00:00
prion
prion
Memory corruption
2012-06-09 00:55:00
Memory corruption
2012-06-09 00:55:00
Design/Logic Flaw
2012-06-09 00:55:00
cve
cve
CVE-2012-2034
2012-06-09 00:55:00
CVE-2012-2037
2012-06-09 00:55:00
CVE-2012-2038
2012-06-09 00:55:00
ubuntucve
ubuntucve
CVE-2012-2037
2012-06-09 00:00:00
CVE-2012-2034
2012-06-09 00:00:00
CVE-2012-2038
2012-06-09 00:00:00
attackerkb
attackerkb
CVE-2012-2037
2012-06-09 00:00:00
CVE-2012-2034
2012-06-09 00:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Malicious JavaScript Code Execution (APSB12-14; CVE-2012-2035)
2012-06-18 00:00:00
Adobe Flash Player ActionScript DOM Object Memory Corruption (APSB12-14; CVE-2012-2034)
2012-06-18 00:00:00
Adobe Flash Player Malicious Field Memory Corruption (APSB12-14; CVE-2012-2037)
2012-06-18 00:00:00
cisa_kev
cisa_kev
Adobe Flash Player Memory Corruption Vulnerability
2022-03-28 00:00:00
jvn
jvn
JVN#38163638: Flash Player issue in implementations of the Same Origin Policy
2012-06-11 00:00:00
seebug
seebug
Adobe Flash Player任意代码执行漏洞
2012-06-11 00:00:00
Adobe Flash Player Object Type Confusion
2014-07-01 00:00:00
Adobe Flash Player对象类型混淆远程代码执行漏洞(CVE-2012-0779)
2012-05-09 00:00:00
symantec
symantec
Adobe Flash Player CVE-2012-0779 Object Type Confusion Remote Code Execution Vulnerability
2012-05-04 00:00:00
metasploit
metasploit
Adobe Flash Player Object Type Confusion
2012-06-22 22:21:18
saint
saint
Adobe Flash Player Object Confusion Code Execution
2012-06-29 00:00:00
Adobe Flash Player Object Confusion Code Execution
2012-06-29 00:00:00
Adobe Flash Player Object Confusion Code Execution
2012-06-29 00:00:00
packetstorm
packetstorm
Adobe Flash Player Object Type Confusion
2012-06-23 00:00:00
threatpost
threatpost
Report: Strategic Web Compromises Behind Recent Hack of Amnesty, Others
2012-05-16 21:01:53
Adobe Releases Patch for Flash Bug Being Used in Targeted Attacks
2012-05-04 15:58:21
'Elderwood' Crew, Tied to Google Aurora Attack, Targeting Defense, Energy, Finance Companies
2012-09-07 14:41:30
securityvulns
securityvulns
Adobe Flash Player memory corruption
2012-05-09 00:00:00
exploitdb
exploitdb
Adobe Flash Player - Object Type Confusion (Metasploit)
2012-06-25 00:00:00
thn
thn
Operation Aurora - Other Zero-Day Attacks targeting finance and Energy
2012-09-08 08:36:00
myhack58
myhack58
The macro perspective of the office vulnerability, 2010-2018-a vulnerability warning-the black bar safety net
2019-06-13 00:00:00

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.714 High

EPSS

Percentile

98.0%

JSON
Related for GLSA-201206-21
nessus18openvas26freebsd2suse5redhat2prion8cve8ubuntucve8attackerkb2checkpoint_advisories7cisa_kev1jvn1seebug3symantec1metasploit1saint4packetstorm1threatpost3securityvulns1exploitdb1thn1myhack581