PT-2007-7460 · Adobe+2 · Flash Player+5

Published

1970-01-01

·

Updated

2021-11-10

·

CVE-2014-0564

CVSS v2.0

10

High

VectorAV:N/AC:L/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Adobe Flash Player versions prior to 13.0.0.250 Adobe Flash Player versions 14.x Adobe Flash Player versions 15.x prior to 15.0.0.189 Adobe Flash Player version 11.2.202.411 and earlier on Linux Adobe AIR versions prior to 15.0.0.293 Adobe AIR SDK versions prior to 15.0.0.302 Adobe AIR SDK & Compiler versions prior to 15.0.0.302
Description The issue allows an attacker to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors. This is a different issue than the one previously identified.
Recommendations For Adobe Flash Player versions prior to 13.0.0.250, update to version 13.0.0.250 or later. For Adobe Flash Player versions 14.x, update to version 15.0.0.189 or later. For Adobe Flash Player versions 15.x prior to 15.0.0.189, update to version 15.0.0.189 or later. For Adobe Flash Player version 11.2.202.411 and earlier on Linux, update to version 11.2.202.411 or later. For Adobe AIR versions prior to 15.0.0.293, update to version 15.0.0.293 or later. For Adobe AIR SDK versions prior to 15.0.0.302, update to version 15.0.0.302 or later. For Adobe AIR SDK & Compiler versions prior to 15.0.0.302, update to version 15.0.0.302 or later.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

BDU:2015-00227
BDU:2015-00310
BDU:2015-00311
CVE-2014-0564
MGASA-2014-0448
RHSA-2014:1648
RHSA-2014_1648

Affected Products

Air
Air Sdk
Air Sdk & Compiler
Flash Player
Red Hat
Suse