CVE-2012-2040 in Flash Playerinfo

Summary

Untrusted search path vulnerability in the installer in Adobe Flash Player before 10.3.183.20 and 11.x before 11.3.300.257 on Windows and Mac OS X; before 10.3.183.20 and 11.x before 11.2.202.236 on Linux; before 11.1.111.10 on Android 2.x and 3.x; and before 11.1.115.9 on Android 4.x, and Adobe AIR before 3.3.0.3610, allows local users to gain privileges via a Trojan horse executable file in an unspecified directory.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

04/02/2012

Disclosure

06/08/2012

Moderation

VulDB entry created

Entries

VDB-5509 (1)

CPE

ready

CWE

CWE-426 (Confirmed)

CVSS

10.0

EPSS

0.01249

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-2040
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-2040
CVE Details	https://www.cvedetails.com/cve/CVE-2012-2040/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!