CVE-2014-0538

Name of the Vulnerable Software and Affected Versions Adobe Flash Player versions prior to 13.0.0.241 Adobe Flash Player versions 14.x prior to 14.0.0.176 Adobe AIR versions prior to 14.0.0.178 Adobe AIR SDK versions prior to 14.0.0.178 Adobe AIR SDK & Compiler versions prior to 14.0.0.178 Adobe Flash Player version 11.2.202.400 and earlier on Linux

Description A use-after-free issue allows attackers to execute arbitrary code via unspecified vectors. This affects Adobe Flash Player, Adobe AIR, Adobe AIR SDK, and Adobe AIR SDK & Compiler, enabling attackers to run arbitrary code.

Recommendations For Adobe Flash Player versions prior to 13.0.0.241, update to version 13.0.0.241 or later. For Adobe Flash Player versions 14.x prior to 14.0.0.176, update to version 14.0.0.176 or later. For Adobe AIR versions prior to 14.0.0.178, update to version 14.0.0.178 or later. For Adobe AIR SDK versions prior to 14.0.0.178, update to version 14.0.0.178 or later. For Adobe AIR SDK & Compiler versions prior to 14.0.0.178, update to version 14.0.0.178 or later. For Adobe Flash Player version 11.2.202.400 and earlier on Linux, update to a version later than 11.2.202.400.