Forum Thread: Adobe Flash Player Unspecified Code Execution Vulnerability

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Vulnerabilities

See the original Secunia advisory:
Adobe Flash Player Unspecified Code Execution Vulnerability

Secunia Adobe Flash Player Unspecified Code Execution Vulnerability
Secunia Official 15th Aug, 2012 05:58
Ranking: 0
Posts: 0
User Since: -
System Score: -
Location: Copenhagen, DK
A vulnerability has been reported in Flash Player, which can be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to an unspecified error. No more information is currently available.

The vulnerability is reported in the following versions:
* Flash Player 11.3.300.270 and earlier for Windows and Macintosh
* Flash Player 11.2.202.236 and earlier for Linux
* Flash Player 11.3.300.270 and earlier for Chrome users

Successful exploitation allows execution of arbitrary code.

NOTE: The vulnerability is currently being actively exploited in targeted attacks via Word documents against the Windows version.

harryjohnston RE: Adobe Flash Player Unspecified Code Execution Vulnerability
Member 15th Aug, 2012 05:58
Score: 4
Posts: 6
User Since: 20th Jun 2011
System Score: N/A
Location: NZ
Last edited on 15th Aug, 2012 05:58
There's a typo in the advisory: Windows and Macintosh users need to update to 11.3.300.271, not to 11.3.300.270. Also, according to the Adobe bulletin, the latest Chrome version is 21.0.1180.79.
Was this reply relevant?
+0
-1
Anthony Wells RE: Adobe Flash Player Unspecified Code Execution Vulnerability
Expert Contributor 15th Aug, 2012 15:54
Score: 2472
Posts: 3,362
User Since: 19th Dec 2007
System Score: N/A
Location: N/A

Hi ,

If you reread the advisory and look at the solution , you will observe that there is not a "typo" and the correct version for the update is displayed :ie: 11.3.300.271 .

Take care

Anthony

--


It always seems impossible until its done.
Nelson Mandela
Was this reply relevant?
+1
-0
harryjohnston RE: Adobe Flash Player Unspecified Code Execution Vulnerability
Member 17th Aug, 2012 00:31
Score: 4
Posts: 6
User Since: 20th Jun 2011
System Score: N/A
Location: NZ
That's because it was fixed after I posted my comment.
Was this reply relevant?
+0
-0