CVE-2015-8644

Name of the Vulnerable Software and Affected Versions Adobe Flash Player versions prior to 18.0.0.324 Adobe Flash Player versions 19.x and 20.x prior to 20.0.0.267 on Windows and OS X Adobe Flash Player versions prior to 11.2.202.559 on Linux Adobe AIR versions prior to 20.0.0.233 Adobe AIR SDK versions prior to 20.0.0.233 Adobe AIR SDK & Compiler versions prior to 20.0.0.233

Description The issue is related to a "type confusion" error, allowing attackers to execute arbitrary code. This can be exploited by a remote attacker due to the uncertainty of "type inconsistency".

Recommendations For Adobe Flash Player versions prior to 18.0.0.324, update to version 18.0.0.324 or later. For Adobe Flash Player versions 19.x and 20.x prior to 20.0.0.267 on Windows and OS X, update to version 20.0.0.267 or later. For Adobe Flash Player versions prior to 11.2.202.559 on Linux, update to version 11.2.202.559 or later. For Adobe AIR versions prior to 20.0.0.233, update to version 20.0.0.233 or later. For Adobe AIR SDK versions prior to 20.0.0.233, update to version 20.0.0.233 or later. For Adobe AIR SDK & Compiler versions prior to 20.0.0.233, update to version 20.0.0.233 or later.