Adobe Flash Player 11.1.111.19/11.1.115.20/11.2.202.243/11.4.402.287 Security Feature access control
| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 7.1 | $0-$5k | 0.00 |
A vulnerability classified as critical has been found in Adobe Flash Player 11.1.111.19/11.1.115.20/11.2.202.243/11.4.402.287 (Multimedia Player Software). Affected is some unknown functionality of the component Security Feature. The manipulation with an unknown input leads to a access control vulnerability. CWE is classifying the issue as CWE-264. This is going to have an impact on confidentiality, integrity, and availability. CVE summarizes:
Adobe Flash Player before 10.3.183.43 and 11.x before 11.5.502.110 on Windows and Mac OS X, before 10.3.183.43 and 11.x before 11.2.202.251 on Linux, before 11.1.111.24 on Android 2.x and 3.x, and before 11.1.115.27 on Android 4.x; Adobe AIR before 3.5.0.600; and Adobe AIR SDK before 3.5.0.600 allow attackers to bypass intended access restrictions and execute arbitrary code via unspecified vectors.
The weakness was released 11/06/2012 by Eduardo Vela Nava with Google Security Team as APSB12-24 as confirmed advisory (Website). The advisory is shared for download at adobe.com. The public release was coordinated with the vendor. This vulnerability is traded as CVE-2012-5278 since 10/04/2012. The exploitability is told to be difficult. It is possible to launch the attack remotely. The exploitation doesn't require any form of authentication. Technical details are unknown but a private exploit is available. The MITRE ATT&CK project declares the attack technique as T1068.
It is declared as proof-of-concept. The vulnerability scanner Nessus provides a plugin with the ID 62835 (Adobe AIR 3.x <= 3.4.0.2710 Multiple Vulnerabilities (APSB12-24)), which helps to determine the existence of the flaw in a target environment. It is assigned to the family Windows. The commercial vulnerability scanner Qualys is able to test this issue with plugin 166206 (SUSE Security Update for flash-player (openSUSE-SU-2013:0367-1)).
Upgrading to version 11.5.502.110 (Win, Mac), 11.2.202.251 (Linux), 11.1.115.27 or 11.1.111.24 (Android) eliminates this vulnerability. The upgrade is hosted for download at adobe.com. The problem might be mitigated by replacing the product with Microsoft Silverlight, Java or Javascript as an alternative. The best possible mitigation is suggested to be upgrading to the latest version. A possible mitigation has been published immediately after the disclosure of the vulnerability.
The vulnerability is also documented in the databases at X-Force (79851), Tenable (62835), SecurityFocus (BID 56547†), OSVDB (87070†) and Secunia (SA51186†). Entries connected to this vulnerability are available at VDB-6874, VDB-6871, VDB-6873 and VDB-6875. VulDB is the best source for vulnerability data and more expert information about this specific topic.
Product
Type
Vendor
Name
Version
License
Support
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 8.1VulDB Meta Temp Score: 7.1
VulDB Base Score: 8.1
VulDB Temp Score: 7.1
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| unlock | unlock | unlock | unlock | unlock | unlock |
| unlock | unlock | unlock | unlock | unlock | unlock |
| unlock | unlock | unlock | unlock | unlock | unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Access controlCWE: CWE-264
CAPEC: 🔍
ATT&CK: 🔍
Local: No
Remote: Yes
Availability: 🔍
Access: Private
Status: Proof-of-Concept
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | unlock | unlock | unlock | unlock |
|---|---|---|---|---|
| Today | unlock | unlock | unlock | unlock |
Nessus ID: 62835
Nessus Name: Adobe AIR 3.x <= 3.4.0.2710 Multiple Vulnerabilities (APSB12-24)
Nessus File: 🔍
Nessus Risk: 🔍
Nessus Family: 🔍
OpenVAS ID: 72608
OpenVAS Name: FreeBSD Ports: linux-f10-flashplugin
OpenVAS File: 🔍
OpenVAS Family: 🔍
Qualys ID: 🔍
Qualys Name: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
Reaction Time: 🔍
0-Day Time: 🔍
Exposure Time: 🔍
Upgrade: Flash Player 11.5.502.110 (Win/Mac), 11.2.202.251 (Linux), 11.1.115.27/11.1.111.24 (Android)
Alternative: Microsoft Silverlight/Java/Javascript
McAfee IPS: 🔍
McAfee IPS Version: 🔍
PaloAlto IPS: 🔍
Fortigate IPS: 🔍
Timeline
10/04/2012 🔍11/06/2012 🔍
11/06/2012 🔍
11/06/2012 🔍
11/06/2012 🔍
11/06/2012 🔍
11/07/2012 🔍
11/07/2012 🔍
11/07/2012 🔍
11/07/2012 🔍
04/19/2021 🔍
Sources
Vendor: adobe.comAdvisory: APSB12-24
Researcher: Eduardo Vela Nava
Organization: Google Security Team
Status: Confirmed
Confirmation: 🔍
Coordinated: 🔍
CVE: CVE-2012-5278 (🔍)
GCVE (CVE): GCVE-0-2012-5278
GCVE (VulDB): GCVE-100-6876
OVAL: 🔍
X-Force: 79851 - Adobe Flash Player code execution, High Risk
SecurityFocus: 56547 - Adobe Flash Player and AIR CVE-2012-5278 Remote Code Execution Vulnerability
Secunia: 51186 - Red Hat update flash-plugin, Highly Critical
OSVDB: 87070
SecurityTracker: 1027730 - Adobe Flash Player Buffer Overflows and Memory Corruption Errors Let Remote Users Execute Arbitrary Code
Vulnerability Center: 37018 - [APSB12-24] Adobe Flash Player and AIR Unspecified Security Bypass Vulnerability - CVE-2012-5278, Critical
scip Labs: https://www.scip.ch/en/?labs.20161013
See also: 🔍
Entry
Created: 11/07/2012 09:56 AMUpdated: 04/19/2021 07:03 AM
Changes: 11/07/2012 09:56 AM (100), 04/20/2017 02:18 PM (2), 04/19/2021 07:03 AM (3)
Complete: 🔍
Cache ID: 18:497:40
No comments yet. Languages: en.
Please log in to comment.