First published: Wed Nov 07 2012(Updated: )
Buffer overflow in Adobe Flash Player before 10.3.183.43 and 11.x before 11.5.502.110 on Windows and Mac OS X, before 10.3.183.43 and 11.x before 11.2.202.251 on Linux, before 11.1.111.24 on Android 2.x and 3.x, and before 11.1.115.27 on Android 4.x; Adobe AIR before 3.5.0.600; and Adobe AIR SDK before 3.5.0.600 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2012-5274, CVE-2012-5276, CVE-2012-5277, and CVE-2012-5280.
Credit: psirt@adobe.com
Affected Software | Affected Version | How to fix |
---|---|---|
Macromedia Flash Player | >=10.3<10.3.183.43 | |
Macromedia Flash Player | >=11.4<11.5.502.110 | |
Apple iOS and macOS | ||
Microsoft Windows | ||
Macromedia Flash Player | >=11.2<11.2.202.251 | |
Linux Kernel | ||
Macromedia Flash Player | >=11.1<11.1.111.24 | |
Android | >=2.0<=2.3.7 | |
Android | >=3.0<=3.2.6 | |
Macromedia Flash Player | >=11.1<11.1.115.27 | |
Android | >=4.0<=4.4.4 | |
Adobe | <3.5.0.600 | |
Adobe AIR | <3.5.0.600 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2012-5275 has been categorized as a critical vulnerability due to the potential for remote code execution.
To mitigate CVE-2012-5275, users should update Adobe Flash Player and Adobe AIR to the latest versions available.
CVE-2012-5275 affects Adobe Flash Player versions prior to 10.3.183.43 and 11.x versions prior to 11.5.502.110.
Yes, CVE-2012-5275 affects Adobe AIR versions prior to 3.5.0.600.
CVE-2012-5275 impacts Windows, Mac OS X, Linux, and Android platforms.