PRIOn knowledge basePRION:CVE-2012-0756

HistoryFeb 16, 2012 - 7:55 p.m.

Design/Logic Flaw

2012-02-1619:55:00

PRIOn knowledge base

www.prio-n.com

6.6 Medium

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.324 Low

EPSS

Percentile

96.9%

JSON

Adobe Flash Player before 10.3.183.15 and 11.x before 11.1.102.62 on Windows, Mac OS X, Linux, and Solaris; before 11.1.111.6 on Android 2.x and 3.x; and before 11.1.115.6 on Android 4.x allows attackers to bypass intended access restrictions via unspecified vectors, a different vulnerability than CVE-2012-0755.

CPENameOperatorVersion
flash_playerlt10.3.183.15
flash_playerge11.0
flash_playerlt11.1.102.62
flash_playerlt11.1.111.6
flash_playerlt11.1.115.6

Name	Operator	Version
flash_player	lt	10.3.183.15
flash_player	ge	11.0
flash_player	lt	11.1.102.62
flash_player	lt	11.1.111.6
flash_player	lt	11.1.115.6

References

lists.opensuse.org/opensuse-security-announce/2012-02/msg00014.html

rhn.redhat.com/errata/RHSA-2012-0144.html

secunia.com/advisories/48265

secunia.com/advisories/48819

security.gentoo.org/glsa/glsa-201204-07.xml

www.adobe.com/support/security/bulletins/apsb12-03.html

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14881

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16149

6.6 Medium

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.324 Low

EPSS

Percentile

96.9%

JSON

Related for PRION:CVE-2012-0756