VIR Vulnerability Intelligence Relay

CVE-2012-0778

critical
Published 2012-05-09 · Modified 2026-04-29
CVSS v3
CVSS v2
10.0
VIR risk
10.0

Description

Buffer overflow in Adobe Flash Professional before CS6 allows attackers to execute arbitrary code via unspecified vectors.

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: psirt@adobe.com — http://www.adobe.com/support/security/bulletins/apsb12-12.html

Application impact
VendorProductVersionsFixed
adobeflash_cs39.0
adobeflash_cs410.0
adobeflash_cs5.5{"endIncluding":"11.0"}

References

CWEs

CWE-119

Verify integrity in audit chain (admin only). AS-IS.