CVE-2012-5054

CVE Database · CVE-2012-5054

CVE-2012-5054

· HIGHAnalyzed

CVSS v3.1

8.8

EPSS

21.19%

Published

Sep 24, 2012

Modified

Apr 21, 2026

CISA Known Exploited Vulnerability

Added: 2022-06-08 · Due: 2022-06-22

The impacted product is end-of-life and should be disconnected if still in use.

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Integer overflow in the copyRawDataTo method in the Matrix3D class in Adobe Flash Player before 11.4.402.265 allows remote attackers to execute arbitrary code via malformed arguments.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Weaknesses (CWE)

CWE-190CWE-190

Affected Products (1)

adobe · flash_player (up to 11.4.402.265)vulnerable

References (9)

http://packetstormsecurity.org/files/116435/Adobe-Flash-Player-Matrix3D-Integer-Overflow-Code-Execution.html

ExploitThird Party Advisory

http://www.adobe.com/support/security/bulletins/apsb12-19.html

Not ApplicableVendor Advisory

http://www.vupen.com/english/services/ba-index.php

Broken Link

https://exchange.xforce.ibmcloud.com/vulnerabilities/78866

Third Party AdvisoryVDB Entry

http://packetstormsecurity.org/files/116435/Adobe-Flash-Player-Matrix3D-Integer-Overflow-Code-Execution.html

ExploitThird Party Advisory

KEV Catalog EPSS Scores Vendors All CVEs