Summary
This host is installed with Adobe Flash Professional and is prone to buffer overflow vulnerability.
Impact
Successful exploitation will allow attackers to execute arbitrary code.
Impact Level: Application/System
Solution
Upgrade to Adobe Flash Professional version CS6 or later, For updates refer to http://www.adobe.com/downloads/
Insight
The flaw is due to an error in 'Flash.exe' when allocating memory to process a JPG object using its image dimensions.
Affected
Adobe Flash Professional version CS5.5.1 (11.5.1.349) and prior on Windows
References
Severity
Classification
-
CVE CVE-2012-0778 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Citrix Provisioning Services SoapServer Buffer Overflow Vulnerability
- Apple iTunes 'itms:' URI Stack Buffer Overflow Vulnerability
- Cyrus IMAP Server 'split_wildmats()' Remote Buffer Overflow Vulnerability
- ChaSen Buffer Overflow Vulnerability (Windows)
- BarCodeWiz 'BarcodeWiz.dll' ActiveX Control BOF Vulnerability