Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveAdobeCVE-2012-0767
HistoryFeb 16, 2012 - 7:55 p.m.

CVE-2012-0767

2012-02-1619:55:01
CWE-79
adobe
web.nvd.nist.gov
909
In Wild
cve-2012-0767
cross-site scripting
xss
adobe flash player
vulnerability
security
nvd
universal xss
uxss

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5

Confidence

High

EPSS

0.003

Percentile

68.4%

JSON

Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 10.3.183.15 and 11.x before 11.1.102.62 on Windows, Mac OS X, Linux, and Solaris; before 11.1.111.6 on Android 2.x and 3.x; and before 11.1.115.6 on Android 4.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka “Universal XSS (UXSS),” as exploited in the wild in February 2012.

Affected configurations

Nvd
Node
adobeflash_playerRange<10.3.183.15
OR
adobeflash_playerRange11.011.1.102.62
AND
applemac_os_xMatch-
OR
linuxlinux_kernelMatch-
OR
microsoftwindowsMatch-
OR
oraclesolarisMatch--
Node
adobeflash_playerRange<11.1.111.6
AND
googleandroidRange2.03.2
Node
adobeflash_playerRange<11.1.115.6
AND
googleandroidMatch4.0
VendorProductVersionCPE
adobeflash_player*cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*
applemac_os_x-cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:*
linuxlinux_kernel-cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
microsoftwindows-cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
oraclesolaris-cpe:2.3:o:oracle:solaris:-:*:*:*:*:*:-:*
googleandroid*cpe:2.3:o:google:android:*:*:*:*:*:*:*:*
googleandroid4.0cpe:2.3:o:google:android:4.0:*:*:*:*:*:*:*

Related

prion 1
ubuntucve 1
nvd 1
checkpoint_advisories 1
cvelist 1
attackerkb 1
cisa_kev 1
openvas 12
nessus 11
suse 3
redhat 1
freebsd 1
securityvulns 1
gentoo 1
prion
prion
Cross site scripting
2012-02-16 19:55:00
ubuntucve
ubuntucve
CVE-2012-0767
2012-02-16 00:00:00
nvd
nvd
CVE-2012-0767
2012-02-16 19:55:01
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player ActiveX Control Cross-Site Scripting (APSB12-03; CVE-2012-0767)
2012-02-27 00:00:00
cvelist
cvelist
CVE-2012-0767
2012-02-16 19:00:00
attackerkb
attackerkb
CVE-2012-0767
2012-02-16 00:00:00
cisa_kev
cisa_kev
Adobe Flash Player Cross-Site Scripting (XSS) Vulnerability
2022-06-08 00:00:00
openvas
openvas
Adobe Flash Player Multiple Vulnerabilities (Mac OS X) - Feb12
2012-02-22 00:00:00
Adobe Flash Player Multiple Vulnerabilities (Linux) - Feb12
2012-02-22 00:00:00
Adobe Flash Player Multiple Vulnerabilities (Feb 2012) - Linux
2012-02-22 00:00:00
nessus
nessus
SuSE 10 Security Update : flash-player (ZYPP Patch Number 7982)
2012-02-27 00:00:00
Flash Player for Mac <= 10.3.183.14 / 11.1.102.62 Multiple Vulnerabilities (APSB12-03)
2012-02-17 00:00:00
RHEL 5 / 6 : flash-plugin (RHSA-2012:0144)
2012-02-20 00:00:00
suse
suse
Security update for flash-player (critical)
2012-02-27 01:08:18
flash-player to 11.1.102.62 (critical)
2012-02-17 13:08:21
Security update for flash-player (critical)
2012-02-18 10:08:24
redhat
redhat
(RHSA-2012:0144) Critical: flash-plugin security update
2012-02-17 00:00:00
freebsd
freebsd
linux-flashplugin -- multiple vulnerabilities
2012-02-15 00:00:00
securityvulns
securityvulns
http://www.adobe.com/support/security/bulletins/apsb12-03.html
2012-02-16 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2012-04-17 00:00:00

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5

Confidence

High

EPSS

0.003

Percentile

68.4%

JSON
Related for CVE-2012-0767
prion1ubuntucve1nvd1checkpoint_advisories1cvelist1attackerkb1cisa_kev1openvas12nessus11suse3redhat1freebsd1securityvulns1gentoo1