CVE-2012-2040

First published: Sat Jun 09 2012(Updated: )

Untrusted search path vulnerability in the installer in Adobe Flash Player before 10.3.183.20 and 11.x before 11.3.300.257 on Windows and Mac OS X; before 10.3.183.20 and 11.x before 11.2.202.236 on Linux; before 11.1.111.10 on Android 2.x and 3.x; and before 11.1.115.9 on Android 4.x, and Adobe AIR before 3.3.0.3610, allows local users to gain privileges via a Trojan horse executable file in an unspecified directory.

Credit: psirt@adobe.com

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• agent/type
• agent/first-publish-date
• agent/last-modified-date
• agent/weakness
• agent/references
• agent/severity
• agent/author
• agent/tags
• agent/description
• agent/event
• collector/nvd-index
• agent/software-canonical-lookup-request
• agent/softwarecombine
• collector/mitre-cve
• source/MITRE
• vendor/adobe
• canonical/adobe flash player
• version/adobe flash player/11.2.202.235
• vendor/apple
• canonical/apple macos
• vendor/linux
• canonical/linux linux kernel
• vendor/microsoft
• canonical/microsoft windows
• version/adobe flash player/11.1.115.8
• vendor/google
• canonical/google android
• version/google android/4.0
• version/google android/4.4.4
• version/adobe flash player/11.1.111.9
• version/google android/2.0
• version/google android/3.2.6
• canonical/adobe air
• version/adobe air/3.2.0.2070
• vendor/opensuse
• canonical/opensuse opensuse
• version/opensuse opensuse/11.4
• version/opensuse opensuse/12.1
• vendor/suse
• canonical/suse linux enterprise desktop
• version/suse linux enterprise desktop/10-sp4
• version/suse linux enterprise desktop/11-sp1
• version/suse linux enterprise desktop/11-sp2