This script is Copyright (C) 2012 Tenable Network Security, Inc.
The remote Mac OS X host contains a version of Adobe AIR that is
affected by multiple memory corruption vulnerabilities.
According to its version, the instance of Adobe AIR 3.x on the remote
Mac OS X host is 184.108.40.20680 or earlier and is reportedly affected by
several critical memory corruption vulnerabilities :
- Memory corruption vulnerabilities related to URL
security domain checking. (CVE-2012-0772)
- A flaw in the NetStream Class that could lead to remote
code execution. (CVE-2012-0773)
By tricking a victim into visiting a specially crafted page, an
attacker may be able to utilize these vulnerabilities to execute
arbitrary code subject to the users' privileges.
See also :
Upgrade to Adobe AIR 220.127.116.110 or later.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 7.7
Public Exploit Available : true
Family: MacOS X Local Security Checks
Nessus Plugin ID: 58539 ()
Bugtraq ID: 52748
CVE ID: CVE-2012-0772CVE-2012-0773
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.