Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.3
CVSSv2

CVE-2012-0779

Published: 04/05/2012 Updated: 18/07/2019
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
VMScore: 935
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Flash Player

Vulnerability Summary

Adobe Flash Player prior to 10.3.183.19 and 11.x prior to 11.2.202.235 on Windows, Mac OS X, and Linux; prior to 11.1.111.9 on Android 2.x and 3.x; and prior to 11.1.115.8 on Android 4.x allows remote malicious users to execute arbitrary code via a crafted file, related to an "object confusion vulnerability," as exploited in the wild in May 2012.

Vulnerable Product Search on Vulmon Subscribe to Product

adobe flash_player

Vendor Advisories

Red Hat: Critical: flash-plugin security update
Synopsis Critical: flash-plugin security update Type/Severity Security Advisory: Critical Topic An updated Adobe Flash Player package that fixes one security issue is nowavailable for Red Hat Enterprise Linux 5 and 6 SupplementaryThe Red Hat Security Response Team has rated this update as having criticalse ...

Exploits

Exploit DB: Adobe Flash Player - Object Type Confusion (Metasploit)
## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # web site for more information on licensing and terms of use # metasploitcom/ ## require 'msf/core' class Metasploit3 < Msf::Exploit::Remote Rank = NormalRanking include Msf::Exploit::R ...
Exploit DB: Adobe Flash Player Object Type Confusion
This Metasploit module exploits a vulnerability found in Adobe Flash Player By supplying a corrupt AMF0 "_error" response, it is possible to gain arbitrary remote code execution under the context of the user This vulnerability has been exploited in the wild as part of the "World Uyghur Congress Invitationdoc" e-mail attack According to the advi ...

Github Repositories

https://github.com/wesinator/ergenekon

Tracking and timelining historic and ongoing People's Republic of China πŸ‡¨πŸ‡³ malware targeting of Uyghur people

ergenekon Tracking and timelining historic and ongoing People's Republic of China πŸ‡¨πŸ‡³ malware targeting of Uyghur people Any malware information is categorised and grouped using the horizontal axis of the Diamond Model Malware file hashes are standardised on SHA256 (where available) Timeline and list of activity is not exhaustive The purpose of this project is t

References

NVD-CWE-noinfohttp://www.adobe.com/support/security/bulletins/apsb12-09.htmlhttp://lists.opensuse.org/opensuse-security-announce/2012-05/msg00004.htmlhttp://lists.opensuse.org/opensuse-security-announce/2012-05/msg00005.htmlhttp://osvdb.org/81656http://secunia.com/advisories/49038http://www.securitytracker.com/id?1027023http://secunia.com/advisories/49096http://www.securityfocus.com/bid/53395https://exchange.xforce.ibmcloud.com/vulnerabilities/75383http://rhn.redhat.com/errata/RHSA-2012-0688.htmlhttps://access.redhat.com/errata/RHSA-2012:0688https://nvd.nist.govhttps://github.com/wesinator/ergenekonhttps://www.exploit-db.com/exploits/19369/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977IMAPlocal usersCVE-2024-32038CVE-2023-49963CVE-2023-22869CVE-2024-31497localCVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook