← Voltar para CVEs
CVE-2012-5054
HIGHCISA KEV8.8
Descricao
Integer overflow in the copyRawDataTo method in the Matrix3D class in Adobe Flash Player before 11.4.402.265 allows remote attackers to execute arbitrary code via malformed arguments.
Detalhes CVE
Pontuacao CVSS v3.18.8
SeveridadeHIGH
Vetor CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Vetor de ataqueNETWORK
ComplexidadeLOW
Privilegios necessariosNONE
Interacao do usuarioREQUIRED
Publicado9/24/2012
Ultima modificacao4/21/2026
Fontekev
Avistamentos honeypot0
CISA KEV
FornecedorAdobe
ProdutoFlash Player
Nome da vulnerabilidadeAdobe Flash Player Integer Overflow Vulnerability
Data inclusao KEV2022-06-08
Prazo de remediacao2022-06-22
Uso em ransomwareUnknown
Produtos afetados
adobe:flash_player
Fraquezas (CWE)
CWE-190CWE-190
Referencias
http://packetstormsecurity.org/files/116435/Adobe-Flash-Player-Matrix3D-Integer-Overflow-Code-Execution.html(psirt@adobe.com)
http://www.adobe.com/support/security/bulletins/apsb12-19.html(psirt@adobe.com)
http://www.vupen.com/english/services/ba-index.php(psirt@adobe.com)
https://exchange.xforce.ibmcloud.com/vulnerabilities/78866(psirt@adobe.com)
http://packetstormsecurity.org/files/116435/Adobe-Flash-Player-Matrix3D-Integer-Overflow-Code-Execution.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.adobe.com/support/security/bulletins/apsb12-19.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/services/ba-index.php(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/78866(af854a3a-2127-422b-91ae-364da2661108)
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2012-5054(134c704f-9b21-4f2e-91b3-4a467353bcc0)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.