CVE-2014-0549

Name of the Vulnerable Software and Affected Versions Adobe Flash Player (affected versions not specified) Adobe AIR (affected versions not specified) Adobe Pepper Flash for Google Chrome (affected versions not specified) Adobe AIR SDK (affected versions not specified) Adobe AIR SDK & Compiler (affected versions not specified)

Description The issue allows an attacker to execute arbitrary code or cause a denial of service (memory error). It affects multiple Adobe products, including Flash Player, AIR, and Pepper Flash for Google Chrome. The estimated number of potentially affected devices worldwide is not specified. There is no information about real-world incidents where this issue was exploited.

Recommendations For Adobe Flash Player, update to a version that contains a fix for this issue. For Adobe AIR, update to a version that contains a fix for this issue. For Adobe Pepper Flash for Google Chrome, update to a version that contains a fix for this issue. For Adobe AIR SDK, update to a version that contains a fix for this issue. For Adobe AIR SDK & Compiler, update to a version that contains a fix for this issue. As a temporary workaround, consider disabling the vulnerable components until a patch is available. Restrict access to the vulnerable modules to minimize the risk of exploitation. Avoid using vulnerable parameters in affected API endpoints until the issue is resolved.