CVE-2012-2034
CVE-2012-2034
In short
Adobe Flash Player and AIR had a memory corruption vulnerability that could allow attackers to run malicious code or crash the application through unspecified methods. Updating to the patched version was critical as Flash was widely used in browsers.
Technical detail
CWE-119 memory corruption vulnerability in Adobe Flash Player and AIR across multiple platforms (Windows, macOS, Linux, Android) exploitable through unspecified vectors without known preconditions, resulting in arbitrary code execution or denial of service with CVSS 7.5 severity.
Summary generated and translated by AI from the official description.
Adobe Flash Player before 10.3.183.20 and 11.x before 11.3.300.257 on Windows and Mac OS X; before 10.3.183.20 and 11.x before 11.2.202.236 on Linux; before 11.1.111.10 on Android 2.x and 3.x; and before 11.1.115.9 on Android 4.x, and Adobe AIR before 3.3.0.3610, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-2037.
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://lists.opensuse.org/opensuse-security-announce/2012-06/msg00006.htmlhttp://lists.opensuse.org/opensuse-security-announce/2012-06/msg00007.htmlhttp://rhn.redhat.com/errata/RHSA-2012-0722.htmlhttps://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2012-2034http://www.adobe.com/support/security/bulletins/apsb12-14.html