CVE-2015-3105

Name of the Vulnerable Software and Affected Versions Adobe Flash Player versions prior to 13.0.0.292 Adobe Flash Player versions 14.x through 18.x before 18.0.0.160 Adobe Flash Player version prior to 11.2.202.466 on Linux Adobe AIR versions prior to 18.0.0.144 on Windows Adobe AIR versions prior to 18.0.0.143 on OS X and Android Adobe AIR SDK versions prior to 18.0.0.144 on Windows Adobe AIR SDK versions prior to 18.0.0.143 on OS X Adobe AIR SDK & Compiler versions prior to 18.0.0.144 on Windows Adobe AIR SDK & Compiler versions prior to 18.0.0.143 on OS X

Description The issue is caused by a stack-based buffer overflow, allowing remote attackers to execute arbitrary code or cause a denial of service via unspecified vectors, resulting in memory corruption. This can enable a remote attacker to execute arbitrary code.

Recommendations For Adobe Flash Player versions prior to 13.0.0.292, update to version 13.0.0.292 or later. For Adobe Flash Player versions 14.x through 18.x, update to version 18.0.0.160 or later. For Adobe Flash Player version prior to 11.2.202.466 on Linux, update to version 11.2.202.466 or later. For Adobe AIR versions prior to 18.0.0.144 on Windows, update to version 18.0.0.144 or later. For Adobe AIR versions prior to 18.0.0.143 on OS X and Android, update to version 18.0.0.143 or later. For Adobe AIR SDK versions prior to 18.0.0.144 on Windows, update to version 18.0.0.144 or later. For Adobe AIR SDK versions prior to 18.0.0.143 on OS X, update to version 18.0.0.143 or later. For Adobe AIR SDK & Compiler versions prior to 18.0.0.144 on Windows, update to version 18.0.0.144 or later. For Adobe AIR SDK & Compiler versions prior to 18.0.0.143 on OS X, update to version 18.0.0.143 or later.