Summary
This host is installed with Adobe Flash Professional and is prone to buffer overflow vulnerability.
Impact
Successful exploitation will allow attackers to execute arbitrary code.
Impact Level: Application/System
Solution
Upgrade to Adobe Flash Professional version CS6 or later, For updates refer to http://www.adobe.com/downloads/
Insight
The flaw is due to an error in 'Flash.exe' when allocating memory to process a JPG object using its image dimensions.
Affected
Adobe Flash Professional version CS5.5.1(11.5.1.349) and prior on Mac OS X
References
Severity
Classification
-
CVE CVE-2012-0778 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Audacity Buffer Overflow Vulnerability (Win)
- CA eTrust PestPatrol Anti-Spyware 'ppctl.dll' ActiveX Control BOF Vulnerability
- Apache APR and APR-util Multiple Integer Overflow Vulnerabilities
- Adobe Reader/Acrobat Multimedia Doc.media.newPlayer Code Execution Vulnerability (Win)
- Adobe Reader 'mailListIsPdf' Buffer Overflow Vulnerability (Linux)