Release date:
Updated on:
Affected Systems:
Adobe Flash Player 11.x
Adobe AIR 3.x
Description:
--------------------------------------------------------------------------------
Cve id: CVE-2012-5274, CVE-2012-5275, CVE-2012-5276, CVE-2012-5277, CVE-2012-5278, CVE-2012-5279
Adobe Flash Player is an integrated multimedia Player. AIR is a technology developed based on the combination of network and desktop applications. It can control cloud programs on the network without having to use a browser.
Adobe Flash Player and Adobe AIR have multiple security vulnerabilities. Malicious users can exploit these vulnerabilities to bypass certain security restrictions and control user systems.
<* Source: Mateusz Jurczyk
Link: http://www.adobe.com/support/security/bulletins/apsb12-24.html
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Adobe
-----
Adobe has released a Security Bulletin (APSB12-24) and patches for this:
APSB12-24: Security updates available for Adobe Flash Player
Link: http://www.adobe.com/support/security/bulletins/apsb12-24.html