Adobe Flash Player Object Confusion Remote Code Execution Vulnerability (Windows) Network Vulnerability

Summary

This host is installed with Adobe Flash Player and is prone to object confusion remote code execution vulnerability.

Impact

Successful exploitation will let attackers to create crafted Flash content that, when loaded by the target user, will trigger an object confusion flaw and execute arbitrary code on the target system. Impact Level: System/Application

Solution

Upgrade to Adobe Flash Player version 10.3.183.19 or 11.2.202.235 or later, For details refer, http://www.adobe.com/downloads/

Insight

The flaw is due to an error related to object confusion. NOTE: Further information is not available.

Affected

Adobe Flash Player version prior to 10.3.183.19 on Windows Adobe Flash Player version 11.x prior to 11.2.202.235 on Windows

References

http://osvdb.org/show/osvdb/81656
http://secunia.com/advisories/49096/
http://securitytracker.com/id/1027023
http://www.adobe.com/support/security/bulletins/apsb12-09.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2012-0779

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Acrobat Multiple Vulnerabilities-01 Sep14 (Windows)
Adobe Acrobat and Reader PDF Handling Multiple Vulnerabilities (Linux)
Adobe Acrobat Multiple Unspecified Vulnerabilities - Windows
Adobe AIR Multiple Vulnerabilities-01 Dec13 (Windows)
Aastra IP Telephone Hardcoded Telnet Password Security Bypass Vulnerability

Take action and discover your vulnerabilities