CVE-2014-0548

Name of the Vulnerable Software and Affected Versions Adobe Flash Player versions prior to 13.0.0.244 Adobe Flash Player versions 14.x and 15.x prior to 15.0.0.152 on Windows and OS X Adobe Flash Player versions prior to 11.2.202.406 on Linux Adobe AIR versions prior to 15.0.0.249 on Windows and OS X Adobe AIR versions prior to 15.0.0.252 on Android Adobe AIR SDK versions prior to 15.0.0.249 Adobe AIR SDK & Compiler versions prior to 15.0.0.249

Description The issue allows remote attackers to bypass the Same Origin Policy via unspecified vectors, potentially enabling them to access restricted resources. This could lead to unauthorized actions being performed on behalf of the user.

Recommendations For Adobe Flash Player versions prior to 13.0.0.244, update to version 13.0.0.244 or later. For Adobe Flash Player versions 14.x and 15.x prior to 15.0.0.152 on Windows and OS X, update to version 15.0.0.152 or later. For Adobe Flash Player versions prior to 11.2.202.406 on Linux, update to version 11.2.202.406 or later. For Adobe AIR versions prior to 15.0.0.249 on Windows and OS X, update to version 15.0.0.249 or later. For Adobe AIR versions prior to 15.0.0.252 on Android, update to version 15.0.0.252 or later. For Adobe AIR SDK versions prior to 15.0.0.249, update to version 15.0.0.249 or later. For Adobe AIR SDK & Compiler versions prior to 15.0.0.249, update to version 15.0.0.249 or later.