[Forgot Password]
Login  Register Subscribe

24003

 
 

131517

 
 

106904

 
 

909

 
 

84902

 
 

134

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML view JSON

CVE-2012-4168Date: (C)2012-08-21   (M)2018-02-19


Adobe Flash Player before 10.3.183.23 and 11.x before 11.4.402.265 on Windows and Mac OS X, before 10.3.183.23 and 11.x before 11.2.202.238 on Linux, before 11.1.111.16 on Android 2.x and 3.x, and before 11.1.115.17 on Android 4.x; Adobe AIR before 3.4.0.2540; and Adobe AIR SDK before 3.4.0.2540 allow remote attackers to read content from a different domain via a crafted web site.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V3 Severity:CVSS V2 Severity:
CVSS Score : CVSS Score : 4.3
Exploit Score: Exploit Score: 8.6
Impact Score: Impact Score: 2.9
 
CVSS V3 Metrics:CVSS V2 Metrics:
Attack Vector: Access Vector: NETWORK
Attack Complexity: Access Complexity: MEDIUM
Privileges Required: Authentication: NONE
User Interaction: Confidentiality: PARTIAL
Scope: Integrity: NONE
Confidentiality: Availability: NONE
Integrity:  
Availability:  
  
Reference:
GLSA-201209-01
HPSBMU02948
RHSA-2012:1203
http://www.adobe.com/support/security/bulletins/apsb12-19.html

CPE    183
cpe:/a:adobe:adobe_air:1.0.1
cpe:/a:adobe:adobe_air:1.5.1
cpe:/a:adobe:adobe_air:1.1
cpe:/a:adobe:adobe_air:1.0
...
CWE    1
CWE-200
OVAL    8
oval:org.secpod.oval:def:6934
oval:org.secpod.oval:def:6955
oval:org.secpod.oval:def:6956
oval:org.secpod.oval:def:6942
...

© 2013 SecPod Technologies