CVE-2012-2039

Adobe Flash Player before 10.3.183.20 and 11.x before 11.3.300.257 on Windows and Mac OS X; before 10.3.183.20 and 11.x before 11.2.202.236 on Linux; before 11.1.111.10 on Android 2.x and 3.x; and before 11.1.115.9 on Android 4.x, and Adobe AIR before 3.3.0.3610, allows attackers to execute arbitrary code or cause a denial of service (NULL pointer dereference) via unspecified vectors.

Published: Jun 9, 2012
Updated: Apr 13, 2023
CVE: CVE-2012-2039
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

CWEs:

CWE-476

Affected Software
References

Software	From	Fixed in
adobe / flash_player	-	11.2.202.235.x
adobe / flash_player	-	11.1.115.8.x
adobe / flash_player	-	11.1.111.9.x
adobe / air	-	3.2.0.2070.x
suse / linux_enterprise_desktop	11-sp1	11-sp1.x
suse / linux_enterprise_desktop	11-sp2	11-sp2.x
opensuse / opensuse	11.4	11.4.x
suse / linux_enterprise_desktop	10-sp4	10-sp4.x
opensuse / opensuse	12.1	12.1.x
redhat / enterprise_linux_server	5.0	5.0.x
redhat / enterprise_linux_server_aus	6.2	6.2.x
redhat / enterprise_linux_workstation	5.0	5.0.x
redhat / enterprise_linux_desktop	6.0	6.0.x
redhat / enterprise_linux_server	6.0	6.0.x
redhat / enterprise_linux_workstation	6.0	6.0.x
redhat / enterprise_linux_desktop	5.0	5.0.x
redhat / enterprise_linux_eus	6.2	6.2.x

Vulnerability Database

289,599

CVE-2012-2039