CVSS: 6.1EPSS: 1%CPEs: 10EXPL: 0CVE-2012-0767 – Adobe Flash Player Cross-Site Scripting (XSS) Vulnerability
https://notcve.org/view.php?id=CVE-2012-0767
16 Feb 2012 — Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 10.3.183.15 and 11.x before 11.1.102.62 on Windows, Mac OS X, Linux, and Solaris; before 11.1.111.6 on Android 2.x and 3.x; and before 11.1.115.6 on Android 4.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka "Universal XSS (UXSS)," as exploited in the wild in February 2012. Una vulnerabilidad de ejecución de comandos en sitios cruzados (XSS) en Adobe Flash Player antes de v10.3.183.15 y v11.x a... • http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00014.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.3EPSS: 3%CPEs: 3EXPL: 1CVE-2011-4693
https://notcve.org/view.php?id=CVE-2011-4693
07 Dec 2011 — Unspecified vulnerability in Adobe Flash Player 11.1.102.55 on Windows and Mac OS X allows remote attackers to execute arbitrary code via a crafted SWF file, as demonstrated by the first of two vulnerabilities exploited by the Intevydis vd_adobe_fp module in VulnDisco Step Ahead (SA). NOTE: as of 20111207, this disclosure has no actionable information. However, because the module author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes. Vulnerabilidad no especifica... • http://partners.immunityinc.com/movies/VulnDisco-Flash0day-v2.mov •
CVSS: 9.3EPSS: 3%CPEs: 3EXPL: 1CVE-2011-4694
https://notcve.org/view.php?id=CVE-2011-4694
07 Dec 2011 — Unspecified vulnerability in Adobe Flash Player 11.1.102.55 on Windows and Mac OS X allows remote attackers to execute arbitrary code via a crafted SWF file, as demonstrated by the second of two vulnerabilities exploited by the Intevydis vd_adobe_fp module in VulnDisco Step Ahead (SA). NOTE: as of 20111207, this disclosure has no actionable information. However, because the module author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes. Vulnerabilidad no especific... • http://partners.immunityinc.com/movies/VulnDisco-Flash0day-v2.mov •
CVSS: 10.0EPSS: 1%CPEs: 9EXPL: 0CVE-2011-2455 – flash-plugin: mulitple code execution flaws (APSB11-28)
https://notcve.org/view.php?id=CVE-2011-2455
11 Nov 2011 — Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and before 11.1.102.59 on Android, and Adobe AIR before 3.1.0.4880, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-2445, CVE-2011-2451, CVE-2011-2452, CVE-2011-2453, CVE-2011-2454, CVE-2011-2459, and CVE-2011-2460. Adobe Flash Player anterior a v10.3.183.11 y v11.x anteriore a v11.1.102.55 en W... • http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00014.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 1%CPEs: 9EXPL: 0CVE-2011-2457 – flash-plugin: mulitple code execution flaws (APSB11-28)
https://notcve.org/view.php?id=CVE-2011-2457
11 Nov 2011 — Stack-based buffer overflow in Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and before 11.1.102.59 on Android, and Adobe AIR before 3.1.0.4880, allows attackers to execute arbitrary code via unspecified vectors. Desbordamiento de búfer en Adobe Flash Player anterior a v10.3.183.11 ybv11.x anteriores a v11.1.102.55 en Windows, Mac OS X, Linux, y Solaris y anteriores a v11.1.102.59 en Android, y Adobe AIR anterior a v3.1.0.4880, permite a atacantes... • http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00014.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 1%CPEs: 9EXPL: 0CVE-2011-2453 – flash-plugin: mulitple code execution flaws (APSB11-28)
https://notcve.org/view.php?id=CVE-2011-2453
11 Nov 2011 — Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and before 11.1.102.59 on Android, and Adobe AIR before 3.1.0.4880, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-2445, CVE-2011-2451, CVE-2011-2452, CVE-2011-2454, CVE-2011-2455, CVE-2011-2459, and CVE-2011-2460. Adobe Flash Player anterior a v10.3.183.11 y v11.x anteriore a v11.1.102.55 en W... • http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00014.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 1%CPEs: 9EXPL: 0CVE-2011-2454 – flash-plugin: mulitple code execution flaws (APSB11-28)
https://notcve.org/view.php?id=CVE-2011-2454
11 Nov 2011 — Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and before 11.1.102.59 on Android, and Adobe AIR before 3.1.0.4880, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-2445, CVE-2011-2451, CVE-2011-2452, CVE-2011-2453, CVE-2011-2455, CVE-2011-2459, and CVE-2011-2460. Adobe Flash Player anterior a v10.3.183.11 y v11.x anteriore a v11.1.102.55 en W... • http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00014.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 1%CPEs: 9EXPL: 0CVE-2011-2458
https://notcve.org/view.php?id=CVE-2011-2458
11 Nov 2011 — Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and before 11.1.102.59 on Android, and Adobe AIR before 3.1.0.4880, when Internet Explorer is used, allows remote attackers to bypass the cross-domain policy via a crafted web site. Adobe Flash Player anterior a v10.3.183.11 ybv11.x anteriores a v11.1.102.55 en Windows, Mac OS X, Linux, y Solaris y anteriores a v11.1.102.59 en Android, y Adobe AIR anterior a v3.1.0.4880, cuando se usa Internet Explorer... • http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00014.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 10.0EPSS: 1%CPEs: 9EXPL: 0CVE-2011-2459 – flash-plugin: mulitple code execution flaws (APSB11-28)
https://notcve.org/view.php?id=CVE-2011-2459
11 Nov 2011 — Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and before 11.1.102.59 on Android, and Adobe AIR before 3.1.0.4880, allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-2445, CVE-2011-2451, CVE-2011-2452, CVE-2011-2453, CVE-2011-2454, CVE-2011-2455, and CVE-2011-2460. Adobe Flash Player anterior a v10.3.183.11 ybv11.x anteriores a v11.1.102.55 en ... • http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00014.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 1%CPEs: 9EXPL: 0CVE-2011-2456 – flash-plugin: mulitple code execution flaws (APSB11-28)
https://notcve.org/view.php?id=CVE-2011-2456
11 Nov 2011 — Buffer overflow in Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and before 11.1.102.59 on Android, and Adobe AIR before 3.1.0.4880, allows attackers to execute arbitrary code via unspecified vectors. Desbordamiento de búfer en Adobe Flash Player anterior a v10.3.183.11 y v11.x anteriore a v11.1.102.55 en Windows, Mac OS X, Linux, y Solaris y anteriores a v11.1.102.59 en Android, y Adobe AIR anteriores a v3.1.0.4880, permite a atacantes ejecutar c... • http://lists.opensuse.org/opensuse-security-announce/2011-11/msg00014.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •