Secunia CSI7
Advisories
Research
Forums
Create Profile
Our Commitment
PSI
PSI API
CSI
OSI
xSI
Vulnerabilities
Programs
Open Discussions
My Threads
Create Thread
Statistics
About

Forum Thread: Adobe Flash Player Unspecified Code Execution Vulnerability

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Vulnerabilities

See the original Secunia advisory:
Adobe Flash Player Unspecified Code Execution Vulnerability

Secunia Adobe Flash Player Unspecified Code Execution Vulnerability
Secunia Official 15th Aug, 2012 05:58
Ranking: 0
Posts: 0
User Since: -
System Score: -
Location: Copenhagen, DK
A vulnerability has been reported in Flash Player, which can be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to an unspecified error. No more information is currently available.

The vulnerability is reported in the following versions:
* Flash Player 11.3.300.270 and earlier for Windows and Macintosh
* Flash Player 11.2.202.236 and earlier for Linux
* Flash Player 11.3.300.270 and earlier for Chrome users

Successful exploitation allows execution of arbitrary code.

NOTE: The vulnerability is currently being actively exploited in targeted attacks via Word documents against the Windows version.

harryjohnston RE: Adobe Flash Player Unspecified Code Execution Vulnerability
Member 15th Aug, 2012 05:58
Score: 4
Posts: 6
User Since: 20th Jun 2011
System Score: N/A
Location: NZ
Last edited on 15th Aug, 2012 05:58
There's a typo in the advisory: Windows and Macintosh users need to update to 11.3.300.271, not to 11.3.300.270. Also, according to the Adobe bulletin, the latest Chrome version is 21.0.1180.79.
Was this reply relevant?
+0
-1
Anthony Wells RE: Adobe Flash Player Unspecified Code Execution Vulnerability
Expert Contributor 15th Aug, 2012 15:54
Score: 2437
Posts: 3,324
User Since: 19th Dec 2007
System Score: N/A
Location: N/A

Hi ,

If you reread the advisory and look at the solution , you will observe that there is not a "typo" and the correct version for the update is displayed :ie: 11.3.300.271 .

Take care

Anthony

--


It always seems impossible until its done.
Nelson Mandela
Was this reply relevant?
+1
-0
harryjohnston RE: Adobe Flash Player Unspecified Code Execution Vulnerability
Member 17th Aug, 2012 00:31
Score: 4
Posts: 6
User Since: 20th Jun 2011
System Score: N/A
Location: NZ
That's because it was fixed after I posted my comment.
Was this reply relevant?
+0
-0


 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 VARS
MSSP
Technology Partners
References
 Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


 
© 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability