CVE-2012-5285

Adobe Flash Player <10.3.183.29 & <11.x - Buffer Overflow

Title source: llm
STIX 2.1

Description

Buffer overflow in Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 and 11.x before 11.2.202.243 on Linux, before 11.1.111.19 on Android 2.x and 3.x, and before 11.1.115.20 on Android 4.x; Adobe AIR before 3.4.0.2710; and Adobe AIR SDK before 3.4.0.2710 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than other Flash Player buffer overflow CVEs listed in APSB12-22.

References (4)

Core 4
Core References
Broken Link vdb-entry x_refsource_osvdb
http://osvdb.org/86874
Patch, Vendor Advisory x_refsource_confirm
http://www.adobe.com/support/security/bulletins/apsb12-22.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/79770
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/56374

Scores

EPSS 0.0908
EPSS Percentile 94.7%

Details

CWE
CWE-119
Status published
Products (3)
adobe/air < 3.4.0.2710
adobe/air_sdk < 3.4.0.2710
adobe/flash_player 10.3 - 10.3.183.29
Published Nov 13, 2012
Tracked Since Feb 18, 2026