Adobe Flash Player Object Confusion Remote Code Execution Vulnerability (Mac OS X) Network Vulnerability

Summary

This host is installed with Adobe Flash Player and is prone to object confusion remote code execution vulnerability.

Impact

Successful exploitation will let attackers to create crafted Flash content that, when loaded by the target user, will trigger an object confusion flaw and execute arbitrary code on the target system. Impact Level: System/Application

Solution

Upgrade to Adobe Flash Player version 10.3.183.19 or 11.2.202.235 or later, For details refer, http://www.adobe.com/downloads/

Insight

The flaw is due to an error related to object confusion. NOTE: Further information is not available.

Affected

Adobe Flash Player version prior to 10.3.183.19 on Mac OS X Adobe Flash Player version 11.x prior to 11.2.202.235 on Mac OS X

References

http://osvdb.org/show/osvdb/81656
http://secunia.com/advisories/49096/
http://securitytracker.com/id/1027023
http://www.adobe.com/support/security/bulletins/apsb12-09.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2012-0779

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Air and Flash Player Multiple Vulnerabilities (Mac OS X)
Adobe Flash Player Arbitrary Code Execution Vulnerability - 01 Feb14 (Linux)
Adobe AIR Multiple Vulnerabilities-01 Aug14 (Mac OS X)
Adobe AIR Multiple Vulnerabilities(APSB14-24)-(Mac OS X)
Adobe Flash Player Arbitrary Code Execution Vulnerability - 01 Feb14 (Mac OX S)

Take action and discover your vulnerabilities