← Back

CVE-2012-2036

nvd nist
Published: Jun 9, 2012Modified: Apr 29, 2026

JSON object

Loading...
9.3
Vector
AV:N/AC:M/Au:N/C:C/I:C/A:C
Exploitability: 8.6 / Impact: 10.0
Source: NVD

Description

Integer overflow in Adobe Flash Player before 10.3.183.20 and 11.x before 11.3.300.257 on Windows and Mac OS X; before 10.3.183.20 and 11.x before 11.2.202.236 on Linux; before 11.1.111.10 on Android 2.x and 3.x; and before 11.1.115.9 on Android 4.x, and Adobe AIR before 3.3.0.3610, allows attackers to execute arbitrary code via unspecified vectors.

Affected (17)

Show all products
Adobe: Flash Player, Air · Opensuse: Opensuse · Suse: Linux Enterprise Desktop · Redhat: Enterprise Linux Desktop, Enterprise Linux Eus, Enterprise Linux Server, Enterprise Linux Server Aus, Enterprise Linux Workstation
Adobe
2 products
Flash Player
Air
Opensuse
1 product
Opensuse
Suse
1 product
Linux Enterprise Desktop
Redhat
5 products
Enterprise Linux Desktop
Enterprise Linux Eus
Enterprise Linux Server
Enterprise Linux Server Aus
Enterprise Linux Workstation
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Flash Player
Up to 11.2.202.235
Running on/withPlatform Versions
Linux
Linux Kernel
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Flash Player
Up to 11.1.115.8
Running on/withPlatform Versions
Google
Android
From 4.0 to 4.4.4
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Flash Player
Up to 11.1.111.9
Running on/withPlatform Versions
Google
Android
From 2.0 to 3.2.6
Configuration D
1 vulnerable · 3 platform
Vulnerable SoftwareAffected Versions
Air
Up to 3.2.0.2070
Running on/withPlatform Versions
Apple
Macos
All versions
Google
Android
All versions
Microsoft
Windows
All versions
Configuration E
5 vulnerable
Vulnerable SoftwareAffected Versions
Opensuse
Opensuse
Version 11.4
Opensuse
Version 12.1
Suse
Linux Enterprise Desktop
Version 10 sp4
Linux Enterprise Desktop
Version 11 sp1
Linux Enterprise Desktop
Version 11 sp2
Configuration F
8 vulnerable
Vulnerable SoftwareAffected Versions
Redhat
Enterprise Linux Desktop
Version 5.0
Enterprise Linux Desktop
Version 6.0
Enterprise Linux Eus
Version 6.2
Redhat
Enterprise Linux Server
Version 5.0
Enterprise Linux Server
Version 6.0
Enterprise Linux Server Aus
Version 6.2
Redhat
Enterprise Linux Workstation
Version 5.0
Enterprise Linux Workstation
Version 6.0

Related CWEs

CWE-190
Integer Overflow or Wraparound
The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.

References (8)

Source: psirt@adobe.com
Mailing ListThird Party Advisory
Source: psirt@adobe.com
Mailing ListThird Party Advisory
Source: psirt@adobe.com
Third Party Advisory
Source: psirt@adobe.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.