Adobe Flash Player Object Confusion Remote Code Execution Vulnerability (Linux) Network Vulnerability

Summary

This host is installed with Adobe Flash Player and is prone to object confusion remote code execution vulnerability.

Impact

Successful exploitation will let attackers to create crafted Flash content that, when loaded by the target user, will trigger an object confusion flaw and execute arbitrary code on the target system. Impact Level: System/Application

Solution

Upgrade to Adobe Flash Player version 10.3.183.19 or 11.2.202.235 or later, For details refer, http://www.adobe.com/downloads/

Insight

The flaw is due to an error related to object confusion. NOTE: Further information is not available.

Affected

Adobe Flash Player version prior to 10.3.183.19 on Linux Adobe Flash Player version 11.x prior to 11.2.202.235 on Linux

References

http://osvdb.org/show/osvdb/81656
http://secunia.com/advisories/49096/
http://securitytracker.com/id/1027023
http://www.adobe.com/support/security/bulletins/apsb12-09.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2012-0779
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Flash Player 'SWF' File Multiple Code Execution Vulnerability - Windows
Adobe Acrobat and Reader PDF Handling Multiple Vulnerabilities (Windows)
Adobe Acrobat Multiple Vulnerabilities - 01 May14 (Windows)
Adobe Air Multiple Vulnerabilities - November12 (Windows)
Adobe Flash Player Arbitrary Code Execution Vulnerability - 01 Feb14 (Windows)

Take action and discover your vulnerabilities