Adobe Flash Player Multiple Vulnerabilities
Last Update Date:
9 Oct 2012 10:15
Release Date:
9 Oct 2012
5505
Views
RISK: High Risk
TYPE: Clients - Audio & Video
Multiple vulnerabilities have been identified in Adobe Flash Player, which can be exploited by remote attackers to execute arbitray code.
The product contains buffer overflow and memory corruption vulnerabilites, which could lead to code execution.
Impact
- Remote Code Execution
System / Technologies affected
- Adobe Flash Player 11.4.402.278 and earlier versions for Windows
- Adobe Flash Player 11.4.402.265 and earlier versions for Macintosh
- Adobe Flash Player 11.2.202.238 and earlier versions for Linux
- Adobe Flash Player 11.1.115.17 and earlier versions for Android 4.x
- Adobe Flash Player 11.1.111.16 and earlier versions for Android 3.x and 2.x
- Adobe AIR 3.4.0.2540 and earlier versions for Windows and Macintosh
- Adobe AIR 3.4.0.2540 SDK (includes AIR for iOS) and earlier versions
- Adobe AIR 3.4.0.2540 and earlier versions for Android
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- Windows and Macintosh users: update to Adobe Flash Player 11.4.402.287
- Linux users: update to Adobe Flash Player 11.2.202.243
- Flash Player installed with Google Chrome and Internet Explorer 10 will automatically be updated to their latest versions.
- Android 4.x users: update to Adobe Flash Player 11.1.115.20
- Android 3.x users: update to Flash Player 11.1.111.19
- Adobe AIR and SDK users: update to version 3.4.0.2710
Vulnerability Identifier
- CVE-2012-5248
- CVE-2012-5249
- CVE-2012-5250
- CVE-2012-5251
- CVE-2012-5252
- CVE-2012-5253
- CVE-2012-5254
- CVE-2012-5255
- CVE-2012-5256
- CVE-2012-5257
- CVE-2012-5258
- CVE-2012-5259
- CVE-2012-5260
- CVE-2012-5261
- CVE-2012-5262
- CVE-2012-5263
- CVE-2012-5264
- CVE-2012-5265
- CVE-2012-5266
- CVE-2012-5267
- CVE-2012-5268
- CVE-2012-5269
- CVE-2012-5270
- CVE-2012-5271
- CVE-2012-5272
Source
Related Link
Share with