Adobe AIR 3.x <= 3.2.0.2070 Multiple Vulnerabilities (APSB12-14)

NASLDB: Adobe AIR 3.x <= 3.2.0.2070 Multiple Vulnerabilities (APSB12-14)

General

ID: 59425
Name: Adobe AIR 3.x <= 3.2.0.2070 Multiple Vulnerabilities (APSB12-14)

Summary: Checks version gathered by local check

Credits: Tenable Network Security, Inc.

Classification

Risk: –

CVSS: –
CVSS Base Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C
CVSS Temporal Vector: CVSS2#E:U/RL:OF/RC:C

Port: –
Family: Windows
Type: Local

Description

According to its version, the instance of Adobe AIR on the remote
Windows host is 3.2.0.2070 or earlier and is reportedly affected by
multiple vulnerabilities :

– Multiple memory corruption vulnerabilities exist that
could lead to code execution. (CVE-2012-2034,
CVE-2012-2037)

– A stack overflow vulnerability exists that could lead to
code execution. (CVE-2012-2035)

– An integer overflow vulnerability exists that could lead
to code execution. (CVE-2012-2036)

– A security bypass vulnerability exists that could lead
to information disclosure. (CVE-2012-2038)

– A null dereference vulnerability exists that could lead
to code execution. (CVE-2012-2039)