Back to KEVs

CVE-2012-0779

Adobe Flash Player before 10.3.183.19 and 11.x before 11.2.202.235 on Windows, Mac OS X, and Linux; before 11.1.111.9 on Android 2.x and 3.x; and...

Basic Information

CVE State
PUBLISHED
Reserved Date
January 18, 2012
Published Date
May 04, 2012
Last Updated
August 06, 2024
Vendor
Adobe
Product
Flash Player
Description
Adobe Flash Player before 10.3.183.19 and 11.x before 11.2.202.235 on Windows, Mac OS X, and Linux; before 11.1.111.9 on Android 2.x and 3.x; and before 11.1.115.8 on Android 4.x allows remote attackers to execute arbitrary code via a crafted file, related to an "object confusion vulnerability," as exploited in the wild in May 2012.
Tags
windows linux macos android metasploit_scanner

CVSS Scores

CVSS v2.0

9.3

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploit Status

Exploited in the Wild
Yes (2012-05-04 19:00:00 UTC) Source

References

http://www.securitytracker.com/id?1027023 http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00005.html http://www.securityfocus.com/bid/53395 http://secunia.com/advisories/49096 http://rhn.redhat.com/errata/RHSA-2012-0688.html http://osvdb.org/81656 http://secunia.com/advisories/49038 http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00004.html http://www.adobe.com/support/security/bulletins/apsb12-09.html https://exchange.xforce.ibmcloud.com/vulnerabilities/75383

Known Exploited Vulnerability Information

Source Added Date
CVE 2012-05-04 19:00:00 UTC

Scanner Integrations

Scanner URL Date Detected
Metasploit https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/adobe_flash_rtmp.rb 2025-04-29 11:01:30 UTC

Potential Proof of Concepts

Warning: These PoCs have not been tested and could contain malware. Use at your own risk.

adobe_flash_rtmp

Type: metasploit • Created: Unknown

Metasploit module for CVE-2012-0779

Timeline

  • CVE ID Reserved

  • CVE Published to Public

  • Added to KEVIntel

  • Detected by Metasploit