Vulnerability Description
Adobe Flash Player before 10.3.183.23 and 11.x before 11.4.402.265 on Windows and Mac OS X, before 10.3.183.23 and 11.x before 11.2.202.238 on Linux, before 11.1.111.16 on Android 2.x and 3.x, and before 11.1.115.17 on Android 4.x; Adobe AIR before 3.4.0.2540; and Adobe AIR SDK before 3.4.0.2540 allow attackers to cause a denial of service (application crash) by leveraging a logic error during handling of Firefox dialogs.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Adobe | Adobe Air | <= 3.3.0.3670 |
| Adobe | Adobe Air Sdk | <= 3.3.0.3690 |
| Adobe | Flash Player For Android | <= 11.1.111.10 |
| Android | 2.0 | |
| Adobe | Flash Player | <= 10.3.183.19 |
| Linux | Linux Kernel | All versions |
| Apple | Mac Os X | All versions |
| Microsoft | Windows | All versions |
References
- http://www.adobe.com/support/security/bulletins/apsb12-19.htmlVendor Advisory
- http://www.securityfocus.com/bid/55365
- https://exchange.xforce.ibmcloud.com/vulnerabilities/78226
- http://www.adobe.com/support/security/bulletins/apsb12-19.htmlVendor Advisory
- http://www.securityfocus.com/bid/55365
- https://exchange.xforce.ibmcloud.com/vulnerabilities/78226
FAQ
What is CVE-2012-4171?
CVE-2012-4171 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Adobe Flash Player before 10.3.183.23 and 11.x before 11.4.402.265 on Windows and Mac OS X, before 10.3.183.23 and 11.x before 11.2.202.238 on Linux, before 11.1.111.16 on Android 2.x and 3.x, and bef...
How severe is CVE-2012-4171?
CVE-2012-4171 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-4171?
Check the references section above for vendor advisories and patch information. Affected products include: Adobe Adobe Air, Adobe Adobe Air Sdk, Adobe Flash Player For Android, Google Android, Adobe Flash Player.