CVE-2015-0308

Name of the Vulnerable Software and Affected Versions Adobe Flash Player versions prior to 13.0.0.260 Adobe Flash Player versions 14.x through 16.x before 16.0.0.257 Adobe Flash Player version prior to 11.2.202.429 on Linux Adobe AIR versions prior to 16.0.0.245 on Windows and OS X Adobe AIR version prior to 16.0.0.272 on Android Adobe AIR SDK version prior to 16.0.0.272 Adobe AIR SDK & Compiler version prior to 16.0.0.272

Description The issue is related to a use-after-free vulnerability, which occurs when a program accesses memory after it has been freed. This can allow remote attackers to execute arbitrary code or cause a denial of service. The vulnerability can be exploited via unspecified vectors.

Recommendations For Adobe Flash Player versions prior to 13.0.0.260, update to version 13.0.0.260 or later. For Adobe Flash Player versions 14.x through 16.x, update to version 16.0.0.257 or later. For Adobe Flash Player version prior to 11.2.202.429 on Linux, update to version 11.2.202.429 or later. For Adobe AIR versions prior to 16.0.0.245 on Windows and OS X, update to version 16.0.0.245 or later. For Adobe AIR version prior to 16.0.0.272 on Android, update to version 16.0.0.272 or later. For Adobe AIR SDK version prior to 16.0.0.272, update to version 16.0.0.272 or later. For Adobe AIR SDK & Compiler version prior to 16.0.0.272, update to version 16.0.0.272 or later.