CVE-2015-3080

Name of the Vulnerable Software and Affected Versions Adobe Flash Player versions prior to 13.0.0.289 Adobe Flash Player versions 14.x through 17.x before 17.0.0.188 Adobe Flash Player version prior to 11.2.202.460 on Linux Adobe AIR versions prior to 17.0.0.172 Adobe AIR SDK versions prior to 17.0.0.172 Adobe AIR SDK & Compiler versions prior to 17.0.0.172

Description The issue is a use-after-free vulnerability that allows attackers to execute arbitrary code via unspecified vectors. This can be exploited by a remote attacker to execute arbitrary code. The vulnerability is caused by a use-after-free error in the software platform.

Recommendations For Adobe Flash Player versions prior to 13.0.0.289, update to version 13.0.0.289 or later. For Adobe Flash Player versions 14.x through 17.x, update to version 17.0.0.188 or later. For Adobe Flash Player version prior to 11.2.202.460 on Linux, update to version 11.2.202.460 or later. For Adobe AIR versions prior to 17.0.0.172, update to version 17.0.0.172 or later. For Adobe AIR SDK versions prior to 17.0.0.172, update to version 17.0.0.172 or later. For Adobe AIR SDK & Compiler versions prior to 17.0.0.172, update to version 17.0.0.172 or later.