CVE-2012-0779

EXPLOITED IN THE WILD

Adobe Flash Player <10.3.183.19-11.2.202.235 - RCE

Title source: llm

Description

Adobe Flash Player before 10.3.183.19 and 11.x before 11.2.202.235 on Windows, Mac OS X, and Linux; before 11.1.111.9 on Android 2.x and 3.x; and before 11.1.115.8 on Android 4.x allows remote attackers to execute arbitrary code via a crafted file, related to an "object confusion vulnerability," as exploited in the wild in May 2012.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/19369

View Code ZIP pw:eip

metasploit WORKING POC NORMAL

by sinn3r, juan vazquez · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/adobe_flash_rtmp.rb

View Code ZIP pw:eip

References (10)

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00004.html

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00005.html

[Broken Link] http://osvdb.org/81656

[Third Party Advisory] http://rhn.redhat.com/errata/RHSA-2012-0688.html

[Third Party Advisory] http://secunia.com/advisories/49038

[Third Party Advisory] http://secunia.com/advisories/49096

[Vendor Advisory] http://www.adobe.com/support/security/bulletins/apsb12-09.html

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/53395

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id?1027023

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/75383

Scores

EPSS 0.9007

EPSS Percentile 99.6%

Details

VulnCheck KEV 2012-05-04

InTheWild.io 2019-07-18

Status published

Products (1)

adobe/flash_player 10.3 - 10.3.183.19

Published May 04, 2012

Tracked Since Feb 18, 2026