Details of VAR-201206-0357

ID

VAR-201206-0357

CVE

CVE-2012-2040

TITLE

Adobe Flash Player and Adobe AIR Vulnerability that can be obtained by the right installer

Trust: 0.8

sources: JVNDB: JVNDB-2012-002668

DESCRIPTION

Untrusted search path vulnerability in the installer in Adobe Flash Player before 10.3.183.20 and 11.x before 11.3.300.257 on Windows and Mac OS X; before 10.3.183.20 and 11.x before 11.2.202.236 on Linux; before 11.1.111.10 on Android 2.x and 3.x; and before 11.1.115.9 on Android 4.x, and Adobe AIR before 3.3.0.3610, allows local users to gain privileges via a Trojan horse executable file in an unspecified directory. Adobe Flash Player is prone to multiple security vulnerabilities. An attacker can exploit these issues to execute arbitrary code in the context of the user running the affected application or disclose sensitive information. Failed exploit attempts will likely result in denial-of-service conditions. The product enables viewing of applications, content and video across screens and browsers. Background ========== The Adobe Flash Player is a renderer for the SWF file format, which is commonly used to provide interactive websites. Please review the CVE identifiers referenced below for details. Impact ====== A remote attacker could entice a user to open a specially crafted SWF file, possibly resulting in execution of arbitrary code with the privileges of the process or a Denial of Service condition. Workaround ========== There is no known workaround at this time. Resolution ========== All Adobe Flash Player users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot -v ">=www-plugins/adobe-flash-11.2.202.236" References ========== [ 1 ] CVE-2012-0779 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-0779 [ 2 ] CVE-2012-2034 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-2034 [ 3 ] CVE-2012-2035 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-2035 [ 4 ] CVE-2012-2036 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-2036 [ 5 ] CVE-2012-2037 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-2037 [ 6 ] CVE-2012-2038 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-2038 [ 7 ] CVE-2012-2039 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-2039 [ 8 ] CVE-2012-2040 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2012-2040 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-201206-21.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org. License ======= Copyright 2012 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5

Trust: 2.07

sources: NVD: CVE-2012-2040 // JVNDB: JVNDB-2012-002668 // BID: 53887 // VULHUB: VHN-55321 // PACKETSTORM: 114134

AFFECTED PRODUCTS

vendor:	adobe	model:	air	scope:	lte	version:	3.2.0.2070	Trust: 1.0
vendor:	adobe	model:	flash player	scope:	lte	version:	11.1.115.8	Trust: 1.0
vendor:	suse	model:	linux enterprise desktop	scope:	eq	version:	10	Trust: 1.0
vendor:	adobe	model:	flash player	scope:	lte	version:	11.2.202.235	Trust: 1.0
vendor:	opensuse	model:	opensuse	scope:	eq	version:	12.1	Trust: 1.0
vendor:	suse	model:	linux enterprise desktop	scope:	eq	version:	11	Trust: 1.0
vendor:	adobe	model:	flash player	scope:	lte	version:	11.1.111.9	Trust: 1.0
vendor:	opensuse	model:	opensuse	scope:	eq	version:	11.4	Trust: 1.0
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.186.3	Trust: 0.9
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.157.51	Trust: 0.9
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.111.8	Trust: 0.9
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.186.7	Trust: 0.9
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.115.7	Trust: 0.9
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.186.6	Trust: 0.9
vendor:	adobe	model:	flash player	scope:	lt	version:	11.x (windows macintosh)	Trust: 0.8
vendor:	adobe	model:	air	scope:	lt	version:	(windows	Trust: 0.8
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.115.9	Trust: 0.8
vendor:	adobe	model:	flash player	scope:	eq	version:	11.3.300.257	Trust: 0.8
vendor:	adobe	model:	air	scope:	eq	version:	3.3.0.3610	Trust: 0.8
vendor:	adobe	model:	flash player	scope:	lt	version:	(android 2.x 3.x)	Trust: 0.8
vendor:	adobe	model:	flash player	scope:	lt	version:	(android 4.x)	Trust: 0.8
vendor:	adobe	model:	air	scope:	eq	version:	macintosh android)	Trust: 0.8
vendor:	adobe	model:	flash player	scope:	lt	version:	(linux)	Trust: 0.8
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.20	Trust: 0.8
vendor:	adobe	model:	flash player	scope:	lt	version:	(windows macintosh)	Trust: 0.8
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.111.10	Trust: 0.8
vendor:	adobe	model:	flash player	scope:	lt	version:	11.x (linux)	Trust: 0.8
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.236	Trust: 0.8
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.102.59	Trust: 0.6
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.185.24	Trust: 0.6
vendor:	adobe	model:	flash player	scope:	eq	version:	11.0.1.153	Trust: 0.6
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.106.17	Trust: 0.6
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.246.0	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	3.2.0.2080	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.0.12.35	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.152.21	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	2.6.19140	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.115.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.280	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	1.5.2	Trust: 0.3
vendor:	suse	model:	linux enterprise desktop sp4	scope:	eq	version:	10	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.102.55	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.154.25	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.95.1	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.156.12	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	3.2.0.2070	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	2.7.1.1961	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.95.2	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.155.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.152.33	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.185.22	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.51.66	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.154.13	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.115.6	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.154.27	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	2.0.2	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	3.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.153.1	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.262.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.2460	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.111.9	Trust: 0.3
vendor:	research	model:	in motion blackberry playbook tablet software	scope:	eq	version:	1.0.8.4985	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.111.6	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.181.22	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	2.0.2.12610	Trust: 0.3
vendor:	research	model:	in motion blackberry playbook tablet software	scope:	eq	version:	1.0.5.2304	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.102.63	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	2.6	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.181.26	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.181.14	Trust: 0.3
vendor:	research	model:	in motion blackberry playbook tablet software	scope:	eq	version:	1.0.7.2942	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	3.1.0.4880	Trust: 0.3
vendor:	research	model:	in motion blackberry playbook tablet software	scope:	eq	version:	1.0.8.6067	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.228	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.92.8	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	2.7	Trust: 0.3
vendor:	red	model:	hat enterprise linux supplementary server	scope:	eq	version:	5	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	2.0.4	Trust: 0.3
vendor:	suse	model:	linux enterprise desktop sp2	scope:	eq	version:	11	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.52.15	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	1.1	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.262	Trust: 0.3
vendor:	research	model:	in motion blackberry playbook tablet software	scope:	eq	version:	1.0.7.3312	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.112.61	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.152.32	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.154.24	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.181.16	Trust: 0.3
vendor:	suse	model:	opensuse	scope:	eq	version:	11.4	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	1.5	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.111.5	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.154.18	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.28.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.260.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.181.23	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.52.14.1	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.0.32.18	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.277.0	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	1.5.3	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.7	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.283.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.0.12.36	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.102.62	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.185.21	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	1.01	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.111.7	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.0.3218	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.235	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	1.5.1	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.289.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.53.64	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.102.228	Trust: 0.3
vendor:	red	model:	hat enterprise linux desktop supplementary	scope:	eq	version:	6	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	1.5.3.9130	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.152	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.185.25	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	1.5.3.9120	Trust: 0.3
vendor:	research	model:	in motion blackberry playbook tablet software	scope:	eq	version:	1.0.5.2342	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.233	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.124.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.181.34	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.185.23	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.152.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.186.2	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.0.22.87	Trust: 0.3
vendor:	red	model:	hat enterprise linux server supplementary	scope:	eq	version:	6	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.85.3	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.82.76	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.229	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.0.452	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.115.8	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	2.0.3	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.159.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.151.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.10	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.0.1.152	Trust: 0.3
vendor:	suse	model:	linux enterprise desktop sp1	scope:	eq	version:	11	Trust: 0.3
vendor:	research	model:	in motion blackberry playbook tablet software	scope:	eq	version:	1.0.6	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	1.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.0.15.3	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9	Trust: 0.3
vendor:	suse	model:	opensuse	scope:	eq	version:	12.1	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.31.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.159.1	Trust: 0.3
vendor:	red	model:	hat enterprise linux desktop supplementary client	scope:	eq	version:	5	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.105.6	Trust: 0.3
vendor:	research	model:	in motion blackberry playbook tablet software	scope:	eq	version:	2.0.0.7971	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.47.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.45.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.0.42.34	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.48.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.4	Trust: 0.3
vendor:	adobe	model:	flash player release candida	scope:	eq	version:	10.1	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.223	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.154.28	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.5	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.92.10	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.106.16	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	2.6.19120	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	2.5.1	Trust: 0.3
vendor:	red	model:	hat enterprise linux workstation supplementary	scope:	eq	version:	6	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.102.65	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	2.7.1	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.102.64	Trust: 0.3

sources: BID: 53887 // JVNDB: JVNDB-2012-002668 // CNNVD: CNNVD-201206-135 // NVD: CVE-2012-2040

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2012-2040
value:	HIGH
Trust: 1.0
NVD:	CVE-2012-2040
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-201206-135
value:	HIGH
Trust: 0.6
VULHUB:	VHN-55321
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2012-2040
severity:	HIGH
baseScore:	9.3
vectorString:	AV:N/AC:M/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	8.6
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
NVD:	CVE-2012-2040
severity:	HIGH
baseScore:	7.2
vectorString:	AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	NONE
impactScore:	NONE
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.8
VULHUB:	VHN-55321
severity:	HIGH
baseScore:	9.3
vectorString:	AV:N/AC:M/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	8.6
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-55321 // JVNDB: JVNDB-2012-002668 // CNNVD: CNNVD-201206-135 // NVD: CVE-2012-2040

PROBLEMTYPE DATA

problemtype:	CWE-426	Trust: 1.1
problemtype:	CWE-Other	Trust: 0.8

sources: VULHUB: VHN-55321 // JVNDB: JVNDB-2012-002668 // NVD: CVE-2012-2040

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-201206-135

TYPE

code problem

Trust: 0.6

sources: CNNVD: CNNVD-201206-135

CONFIGURATIONS

sources: JVNDB: JVNDB-2012-002668

PATCH

title:	APSB12-14	url:	http://www.adobe.com/support/security/bulletins/apsb12-14.html	Trust: 0.8
title:	APSB12-14 (cpsid_93754)	url:	http://kb2.adobe.com/jp/cps/937/cpsid_93754.html	Trust: 0.8
title:	APSB12-14	url:	http://www.adobe.com/jp/support/security/bulletins/apsb12-14.html	Trust: 0.8
title:	アドビシステムズ社 Adobe Flash Player の脆弱性に関するお知らせ	url:	http://www.fmworld.net/biz/common/adobe/20120612f.html	Trust: 0.8

sources: JVNDB: JVNDB-2012-002668

EXTERNAL IDS

db:	NVD	id:	CVE-2012-2040	Trust: 2.9
db:	JVNDB	id:	JVNDB-2012-002668	Trust: 0.8
db:	CNNVD	id:	CNNVD-201206-135	Trust: 0.7
db:	BID	id:	53887	Trust: 0.3
db:	VULHUB	id:	VHN-55321	Trust: 0.1
db:	PACKETSTORM	id:	114134	Trust: 0.1

sources: VULHUB: VHN-55321 // BID: 53887 // JVNDB: JVNDB-2012-002668 // PACKETSTORM: 114134 // CNNVD: CNNVD-201206-135 // NVD: CVE-2012-2040

REFERENCES

url:	http://www.adobe.com/support/security/bulletins/apsb12-14.html	Trust: 2.0
url:	http://lists.opensuse.org/opensuse-security-announce/2012-06/msg00007.html	Trust: 1.7
url:	http://lists.opensuse.org/opensuse-security-announce/2012-06/msg00006.html	Trust: 1.7
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2012-2040	Trust: 0.8
url:	https://www.jpcert.or.jp/at/2012/at120019.txt	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2012-2040	Trust: 0.8
url:	http://www.npa.go.jp/cyberpolice/#topics	Trust: 0.8
url:	http://www.adobe.com/products/flash/	Trust: 0.3
url:	http://www.blackberry.com/btsc/kb32019	Trust: 0.3
url:	https://nvd.nist.gov/vuln/detail/cve-2012-2036	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-2036	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-2038	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-2035	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-2040	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-2040	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-2039	Trust: 0.1
url:	http://creativecommons.org/licenses/by-sa/2.5	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-0779	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-2034	Trust: 0.1
url:	http://security.gentoo.org/	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-2038	Trust: 0.1
url:	http://security.gentoo.org/glsa/glsa-201206-21.xml	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-2039	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-2034	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-0779	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-2037	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-2035	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2012-2037	Trust: 0.1
url:	https://bugs.gentoo.org.	Trust: 0.1

sources: VULHUB: VHN-55321 // BID: 53887 // JVNDB: JVNDB-2012-002668 // PACKETSTORM: 114134 // CNNVD: CNNVD-201206-135 // NVD: CVE-2012-2040

CREDITS

wushi of team509 through iDefense's Vulnerability Contributor Program, Manuel Caballero at Microsoft Vulnerability Research (MSVR), Haifei Li at Microsoft Malware Protection Center (MMPC), Kai Lu of Fortinet's FortiGuard Labs, Mitsuaki Shiraishi (Symantec

Trust: 0.3

sources: BID: 53887

SOURCES

db:	VULHUB	id:	VHN-55321
db:	BID	id:	53887
db:	JVNDB	id:	JVNDB-2012-002668
db:	PACKETSTORM	id:	114134
db:	CNNVD	id:	CNNVD-201206-135
db:	NVD	id:	CVE-2012-2040

LAST UPDATE DATE

2024-11-23T21:55:58.950000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-55321	date:	2020-08-13T00:00:00
db:	BID	id:	53887	date:	2015-03-19T08:38:00
db:	JVNDB	id:	JVNDB-2012-002668	date:	2012-06-13T00:00:00
db:	CNNVD	id:	CNNVD-201206-135	date:	2020-08-14T00:00:00
db:	NVD	id:	CVE-2012-2040	date:	2024-11-21T01:38:22.207

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-55321	date:	2012-06-09T00:00:00
db:	BID	id:	53887	date:	2012-06-08T00:00:00
db:	JVNDB	id:	JVNDB-2012-002668	date:	2012-06-12T00:00:00
db:	PACKETSTORM	id:	114134	date:	2012-06-24T23:51:58
db:	CNNVD	id:	CNNVD-201206-135	date:	2012-06-11T00:00:00
db:	NVD	id:	CVE-2012-2040	date:	2012-06-09T00:55:01.253