CVE-2012-5248, CVE-2012-5249, CVE-2012-5250, CVE-2012-5251, CVE-2012-5252, CVE-2012-5253, CVE-2012-5254, CVE-2012-5255, CVE-2012-5256, CVE-2012-5257, CVE-2012-5258, CVE-2012-5259, CVE-2012-5260, CVE-2012-5261, CVE-2012-5262, CVE-2012-5263, CVE-2012-5264, CVE-2012-5265, CVE-2012-5266, CVE-2012-5267, CVE-2012-5268, CVE-2012-5269, CVE-2012-5270, CVE-2012-5271, CVE-2012-5272, CVE-2012-5285, CVE-2012-5286, CVE-2012-5287, CVE-2012-5673
09 Oct 2012
05 Nov 2012
Adobe AIR 3.x
This covers vulnerabilities where malicious people are able to gain system access and execute arbitrary code with the privileges of a local user.
Multiple vulnerabilities have been reported in Adobe Flash Player and Adobe AIR, which can be exploited by malicious people to compromise a user's system.
1) Some unspecified errors can be exploited to cause buffer overflows. No further information is currently available.
2) Some unspecified errors can be exploited to corrupt memory. No further information is currently available.
3) Another unspecified error can be exploited to corrupt memory. No further information is currently available.
Successful exploitation of the vulnerabilities may allow execution of arbitrary code.
The vulnerabilities are reported in the following versions:
Update to a fixed version.
Flash Player for Windows and Macintosh:
Flash Player for Linux:
Flash Player for Android 4.x:
Flash Player for Android 3.x and 2.x:
Flash Player for Chrome:
Flash Player for Internet Explorer 10:
AIR for Windows and Macintosh, SDK (includes AIR for iOS), and for Android:
The vendor credits: