EXPLOITDB-EDB-20624

EXPLOITDB ruby VERIFIED WORKING POC
Exploit for CVE-2012-1535 - Adobe Flash Player < 11.3.300.271 - Code Injection
AI Analysis

This Metasploit module exploits a vulnerability in Adobe Flash Player before 11.3.300.271 by supplying a corrupt Font file used by the SWF, leading to arbitrary remote code execution under the context of the user. It includes ROP chains for different Flash versions and targets specific IE versions on Windows XP SP3.

Attack Type
RCE
Complexity
complex
Reliability
reliable
MITRE ATT&CK
T1189 - Drive-by Compromise T1203 - Exploitation for Client Execution
Loading exploit code...
Download ZIP Password: eip
Source
Platform Exploitdb
Type remote
Platform windows
Language ruby
Files 1
Authors
Metasploit Alexander Gavrun sinn3r juan vazquez
Vulnerability
CVE-2012-1535
Adobe Flash Player < 11.3.300.271 - Code Injection
HIGH KEV
CVSS 7.8