Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
zdiAnonymousZDI-13-021
HistoryFeb 11, 2013 - 12:00 a.m.

Adobe Flash Player loadPCMFromByteArray Remote Code Execution Vulnerability

2013-02-1100:00:00
Anonymous
www.zerodayinitiative.com
17

0.826 High

EPSS

Percentile

98.4%

JSON

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the loadPCMFromByteArray function in the flash.media.Sound object. When this function is called with a high number of β€˜samples’ an integer overflow occurs during the calculation of a buffer size. This can lead to memory corruption that can result in remote code execution under the context of the current user.

Related

nvd 1
cve 1
seebug 1
ubuntucve 1
cvelist 1
checkpoint_advisories 2
prion 1
freebsd 1
nessus 18
suse 4
openvas 13
redhat 1
gentoo 1
nvd
nvd
CVE-2012-5677
2012-12-12 11:38:44
cve
cve
CVE-2012-5677
2012-12-12 11:38:44
seebug
seebug
Adobe Flash Playerε’ŒAIRθΏœη¨‹ζ•΄ζ•°ζΊ’ε‡ΊζΌζ΄ž(CVE-2012-5677)
2012-12-13 00:00:00
ubuntucve
ubuntucve
CVE-2012-5677
2012-12-12 00:00:00
cvelist
cvelist
CVE-2012-5677
2012-12-12 11:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player PCM File Integer Overflow (APSB12-27) - Ver2 (CVE-2012-5677)
2014-03-03 00:00:00
Adobe Flash Player PCM File Integer Overflow (APSB12-27; CVE-2012-5677)
2012-12-30 00:00:00
prion
prion
Integer overflow
2012-12-12 11:38:00
freebsd
freebsd
linux-flashplugin -- multiple vulnerabilities
2012-12-11 00:00:00
nessus
nessus
Flash Player <= 10.3.183.43 / 11.5.502.110 Multiple Vulnerabilities (APSB12-27)
2012-12-12 00:00:00
Adobe AIR 3.x <= 3.5.0.600 Multiple Vulnerabilities (APSB12-27)
2012-12-12 00:00:00
Flash Player <= 10.3.183.43 / 11.5.502.110 Multiple Vulnerabilities (APSB12-27)
2011-12-17 00:00:00
suse
suse
update for flash-player (critical)
2012-12-14 15:08:33
update for flash-player (critical)
2013-02-28 18:28:38
update for flash-player (critical)
2013-01-23 14:05:21
openvas
openvas
Adobe Flash Player Multiple Vulnerabilities - December12 (Mac OS X)
2012-12-14 00:00:00
Adobe Flash Player Multiple Vulnerabilities - December12 (Windows)
2012-12-14 00:00:00
Adobe Flash Player Multiple Vulnerabilities - December12 (Linux)
2012-12-14 00:00:00
redhat
redhat
(RHSA-2012:1569) Critical: flash-plugin security update
2012-12-12 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2013-09-14 00:00:00

0.826 High

EPSS

Percentile

98.4%

JSON
Related for ZDI-13-021
nvd1cve1seebug1ubuntucve1cvelist1checkpoint_advisories2prion1freebsd1nessus18suse4openvas13redhat1gentoo1