(CVE-2012-1535) <adobe-flashplugin-11.2.202.238: code execution flaw (APSB12-18)
Bug #1037020 reported by
Karma Dorje
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| adobe-flashplugin (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Bug Description
Adobe has released security updates for Adobe Flash Player 11.3.300.270 and earlier versions for Windows, Macintosh and Linux. These updates address a vulnerability (CVE-2012-1535) that could cause the application to crash and potentially allow an attacker to take control of the affected system.
There are reports that the vulnerability is being exploited in the wild in limited targeted attacks, distributed through a malicious Word document. The exploit targets the ActiveX version of Flash Player for Internet Explorer on Windows.
Reference:
http://
CVE References
| Changed in adobe-flashplugin (Ubuntu): | |
| status: | New → Confirmed |
| visibility: | private → public |
Revision history for this message
| Jamie Strandboge (jdstrand) wrote | #1 |
| Changed in adobe-flashplugin (Ubuntu): | |
| status: | Confirmed → Fix Released |
To post a comment you must log in.
This is fixed in Lucid-Precise. flashplugin-nonfree is being updated as we speak.