PT-2014-1363 · Adobe+3 · Air Sdk & Compiler+6
Published
2014-08-12
·
Updated
2017-01-07
·
CVE-2014-0541
CVSS v2.0
10
High
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Adobe Flash Player versions prior to 13.0.0.241
Adobe Flash Player versions 14.x prior to 14.0.0.176
Adobe Flash Player version 11.2.202.400 and earlier on Linux
Adobe AIR versions prior to 14.0.0.178 on Windows and OS X
Adobe AIR version 14.0.0.179 and earlier on Android
Adobe AIR SDK versions prior to 14.0.0.178
Adobe AIR SDK & Compiler versions prior to 14.0.0.178
Description
The issue allows attackers to bypass intended access restrictions via unspecified vectors. This could potentially lead to unauthorized access to sensitive information or systems. There is no information provided about the estimated number of potentially affected devices worldwide or details about real-world incidents where this issue was exploited.
Recommendations
For Adobe Flash Player versions prior to 13.0.0.241, update to version 13.0.0.241 or later.
For Adobe Flash Player versions 14.x prior to 14.0.0.176, update to version 14.0.0.176 or later.
For Adobe Flash Player version 11.2.202.400 and earlier on Linux, update to version 11.2.202.400 or later.
For Adobe AIR versions prior to 14.0.0.178 on Windows and OS X, update to version 14.0.0.178 or later.
For Adobe AIR version 14.0.0.179 and earlier on Android, update to version 14.0.0.179 or later.
For Adobe AIR SDK versions prior to 14.0.0.178, update to version 14.0.0.178 or later.
For Adobe AIR SDK & Compiler versions prior to 14.0.0.178, update to version 14.0.0.178 or later.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Air
Air Sdk
Air Sdk & Compiler
Flash Player
Red Hat
Suse