Adobe Flash Player Font Parsing Code Execution Vulnerability - (Linux) Network Vulnerability

Summary

This host is installed with Adobe Flash Player and is prone to unspecified code execution vulnerability.

Impact

Successful exploitation will let attackers to execute arbitrary code or cause the application to crash and take control of the affected system. Impact Level: System/Application

Solution

Upgrade to Adobe Flash Player version 11.2.202.238 or later, For details refer, http://www.adobe.com/downloads/

Insight

An unspecified error occurs when handling SWF content in a word document. This may allow a context-dependent attacker to execute arbitrary code.

Affected

Adobe Flash Player version 11.2.202.236 and prior on Linux

References

http://osvdb.org/show/osvdb/84607
http://secunia.com/advisories/50285/
http://www.adobe.com/support/security/bulletins/apsb12-18.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2012-1535

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Aastra IP Telephone Hardcoded Telnet Password Security Bypass Vulnerability
Adobe Acrobat Multiple Unspecified Vulnerabilities-01 Sep13 (Mac OS X)
Adobe Flash Player Arbitrary Code Execution Vulnerability (Linux)
Adobe Air Multiple Vulnerabilities - October 12 (Windows)
Adobe Acrobat Multiple Unspecified Vulnerabilities -01 May13 (Mac OS X)

Take action and discover your vulnerabilities