Lucene search

AdobeCVE-2012-5677

HistoryDec 12, 2012 - 11:38 a.m.

CVE-2012-5677

2012-12-1211:38:44

CWE-189

adobe

web.nvd.nist.gov

126

cve-2012-5677

adobe flash player

integer overflow

security vulnerability

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.6

Confidence

Low

EPSS

0.799

Percentile

98.4%

JSON

Integer overflow in Adobe Flash Player before 10.3.183.48 and 11.x before 11.5.502.135 on Windows, before 10.3.183.48 and 11.x before 11.5.502.136 on Mac OS X, before 10.3.183.48 and 11.x before 11.2.202.258 on Linux, before 11.1.111.29 on Android 2.x and 3.x, and before 11.1.115.34 on Android 4.x; Adobe AIR before 3.5.0.880 on Windows and before 3.5.0.890 on Mac OS X; and Adobe AIR SDK before 3.5.0.880 on Windows and before 3.5.0.890 on Mac OS X allows attackers to execute arbitrary code via unspecified vectors.

Affected configurations

Nvd

Node

adobeflash_playerRange10.3–10.3.183.48

adobeflash_playerRange11.5–11.5.502.135

AND

microsoftwindowsMatch-

Node

adobeflash_playerRange10.3–10.3.183.48

adobeflash_playerRange11.2–11.2.202.258

AND

linuxlinux_kernelMatch-

Node

adobeflash_playerRange11.1–11.1.111.29

AND

googleandroidRange2.0–2.3.7

googleandroidRange3.0–3.2.6

Node

adobeflash_playerRange11.1–11.1.115.34

AND

googleandroidRange4.0–4.4.4

Node

adobeairRange<3.5.0.880

AND

microsoftwindowsMatch-

Node

adobeflash_playerRange10.3–10.3.183.48

adobeflash_playerRange11.5–11.5.502.136

AND

applemac_os_xMatch-

Node

adobeairRange<3.5.0.890

AND

applemac_os_xMatch-

Node

adobeair_sdkRange<3.5.0.880

AND

microsoftwindowsMatch-

Node

adobeair_sdkRange<3.5.0.890

AND

applemac_os_xMatch-

VendorProductVersionCPE
adobeflash_player*cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*
microsoftwindows-cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
linuxlinux_kernel-cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
googleandroid*cpe:2.3:o:google:android:*:*:*:*:*:*:*:*
adobeair*cpe:2.3:a:adobe:air:*:*:*:*:*:*:*:*
applemac_os_x-cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:*
adobeair_sdk*cpe:2.3:a:adobe:air_sdk:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
adobe	flash_player	*	cpe:2.3:a:adobe:flash_player::::::::
microsoft	windows	-	cpe:2.3:o:microsoft:windows:-:::::::*
linux	linux_kernel	-	cpe:2.3:o:linux:linux_kernel:-:::::::*
google	android	*	cpe:2.3:o:google:android::::::::
adobe	air	*	cpe:2.3:a:adobe:air::::::::
apple	mac_os_x	-	cpe:2.3:o:apple:mac_os_x:-:::::::*
adobe	air_sdk	*	cpe:2.3:a:adobe:air_sdk::::::::