← Retour aux CVEs
CVE-2012-5054
HIGHCISA KEV8.8
Description
Integer overflow in the copyRawDataTo method in the Matrix3D class in Adobe Flash Player before 11.4.402.265 allows remote attackers to execute arbitrary code via malformed arguments.
Details CVE
Score CVSS v3.18.8
SeveriteHIGH
Vecteur CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Vecteur d'attaqueNETWORK
ComplexiteLOW
Privileges requisNONE
Interaction utilisateurREQUIRED
Publie9/24/2012
Derniere modification4/21/2026
Sourcekev
Observations honeypot0
CISA KEV
FournisseurAdobe
ProduitFlash Player
Nom vulnerabiliteAdobe Flash Player Integer Overflow Vulnerability
Date ajout KEV2022-06-08
Date limite remediation2022-06-22
Utilise dans ransomwareUnknown
Produits affectes
adobe:flash_player
Faiblesses (CWE)
CWE-190CWE-190
References
http://packetstormsecurity.org/files/116435/Adobe-Flash-Player-Matrix3D-Integer-Overflow-Code-Execution.html(psirt@adobe.com)
http://www.adobe.com/support/security/bulletins/apsb12-19.html(psirt@adobe.com)
http://www.vupen.com/english/services/ba-index.php(psirt@adobe.com)
https://exchange.xforce.ibmcloud.com/vulnerabilities/78866(psirt@adobe.com)
http://packetstormsecurity.org/files/116435/Adobe-Flash-Player-Matrix3D-Integer-Overflow-Code-Execution.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.adobe.com/support/security/bulletins/apsb12-19.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/services/ba-index.php(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/78866(af854a3a-2127-422b-91ae-364da2661108)
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2012-5054(134c704f-9b21-4f2e-91b3-4a467353bcc0)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.