Buffer overflow in Adobe Adobe_air

CVE-2011-2456

Buffer overflow in Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and before 11.1.102.59 on Android, and Adobe AIR before 3.1.0.4880, allows attackers to execute arbitrary code vi…

Vulnerability class: Buffer Overflow

EPSS: 0.043 (89.1th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

openSUSE-SU-2011:1240 (vendor-advisory, Mailing List, Third Party Advisory, x_refsource_SUSE)
SUSE-SA:2011:043 (vendor-advisory, Mailing List, Third Party Advisory, x_refsource_SUSE)
oval:org.mitre.oval:def:14215 (x_refsource_OVAL, signature, Third Party Advisory, vdb-entry)
SUSE-SU-2011:1244 (vendor-advisory, Mailing List, Third Party Advisory, x_refsource_SUSE)
GLSA-201204-07 (vendor-advisory, Third Party Advisory, x_refsource_GENTOO)
RHSA-2011:1445 (x_refsource_REDHAT, vendor-advisory, Third Party Advisory)
oval:org.mitre.oval:def:16046 (x_refsource_OVAL, signature, Third Party Advisory, vdb-entry)
48819 (x_refsource_SECUNIA, Third Party Advisory, third-party-advisory)
psirt@adobe.com (x_refsource_CONFIRM, Patch, Vendor Advisory)