Signature Detail

APP: Adobe Flash Player Malformed RTMP Server Response Remote Code Execution

This signature detects attempts to exploit a known vulnerability against Adobe Flash Player. A successful attack can lead to arbitrary code execution.

Extended Description

Adobe Flash Player is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will likely result in denial-of-service conditions. The following versions are affected: Adobe Flash Player 11.2.202.233 and prior versions for Windows, Mac OS and Linux operating systems Adobe Flash Player 11.1.115.7 and prior versions for Android 4.x Adobe Flash Player 11.1.111.8 and prior versions for Android 3.x and 2.x

Affected Products

• Adobe flash_player 10
• Adobe flash_player 10.0.0.584
• Adobe flash_player 10.0.12.10
• Adobe flash_player 10.0.12 .35
• Adobe flash_player 10.0.12 .36
• Adobe flash_player 10.0.15 .3
• Adobe flash_player 10.0.22.87
• Adobe flash_player 10.0.32 18
• Adobe flash_player 10.0.32.18
• Adobe flash_player 10.0.42.34
• Adobe flash_player 10.0.45 2
• Adobe flash_player 10.0.45 2
• Adobe flash_player 10.0.45.2
• Adobe flash_player 10.1.102.64
• Adobe flash_player 10.1.102.65
• Adobe flash_player 10.1.105.6
• Adobe flash_player 10.1.106.16
• Adobe flash_player 10.1.51.66
• Adobe flash_player 10.1.52.14.1
• Adobe flash_player 10.1.52.15
• Adobe flash_player 10.1.53.64
• Adobe flash_player 10.1.82.76
• Adobe flash_player 10.1.85.3
• Adobe flash_player 10.1.92.10
• Adobe flash_player 10.1.92.10
• Adobe flash_player 10.1.92.8
• Adobe flash_player 10.1.95.1
• Adobe flash_player 10.1.95.2
• Adobe flash_player 10.1.95.2
• Adobe flash_player 10.2.152
• Adobe flash_player 10.2.152.21
• Adobe flash_player 10.2.152.32
• Adobe flash_player 10.2.152.33
• Adobe flash_player 10.2.153.1
• Adobe flash_player 10.2.154.13
• Adobe flash_player 10.2.154.18
• Adobe flash_player 10.2.154.24
• Adobe flash_player 10.2.154.25
• Adobe flash_player 10.2.154.27
• Adobe flash_player 10.2.154.28
• Adobe flash_player 10.2.156.12
• Adobe flash_player 10.2.157.51
• Adobe flash_player 10.2.159.1
• Adobe flash_player 10.3.181.14
• Adobe flash_player 10.3.181.16
• Adobe flash_player 10.3.181.16
• Adobe flash_player 10.3.181.22
• Adobe flash_player 10.3.181.23
• Adobe flash_player 10.3.181.26
• Adobe flash_player 10.3.181.34
• Adobe flash_player 10.3.183.10
• Adobe flash_player 10.3.183.4
• Adobe flash_player 10.3.183.5
• Adobe flash_player 10.3.183.7
• Adobe flash_player 10.3.185.21
• Adobe flash_player 10.3.185.22
• Adobe flash_player 10.3.185.22
• Adobe flash_player 10.3.185.23
• Adobe flash_player 10.3.185.25
• Adobe flash_player 10.3.186.2
• Adobe flash_player 10.3.186.3
• Adobe flash_player 10.3.186.6
• Adobe flash_player 10.3.186.7
• Adobe flash_player 11.0.1.152
• Adobe flash_player 11.1.102.228
• Adobe flash_player 11.1.102.55
• Adobe flash_player 11.1.102.62
• Adobe flash_player 11.1.102.63
• Adobe flash_player 11.1.111.5
• Adobe flash_player 11.1.111.6
• Adobe flash_player 11.1.111.7
• Adobe flash_player 11.1.111.8
• Adobe flash_player 11.1.112.61
• Adobe flash_player 11.1.115.6
• Adobe flash_player 11.1.115.7
• Adobe flash_player 11.2.202.223
• Adobe flash_player 11.2.202.228
• Adobe flash_player 11.2.202.229
• Adobe flash_player 11.2.202.229
• Adobe flash_player 11.2.202.233
• Red_hat enterprise_linux_desktop_supplementary 5 Client
• Red_hat enterprise_linux_desktop_supplementary 6
• Red_hat enterprise_linux_server_supplementary 6
• Red_hat enterprise_linux_supplementary 5 Server
• Red_hat enterprise_linux_workstation_supplementary 6
• Research_in_motion blackberry_playbook_tablet_software 2.0.1.358
• Suse suse_linux_enterprise_desktop 11 SP1
• Suse suse_linux_enterprise_desktop 11 SP2

References

• BugTraq: 53395
• CVE: CVE-2012-0779