PT-2014-3673 · Adobe+3 · Air Sdk & Compiler+6

Published

2014-04-08

·

Updated

2017-12-16

·

CVE-2014-0508

CVSS v2.0

5.0

Medium

VectorAV:N/AC:L/Au:N/C:P/I:N/A:N
Name of the Vulnerable Software and Affected Versions Adobe Flash Player versions prior to 11.7.700.275 and 11.8.x through 13.0.x before 13.0.0.182 Adobe Flash Player version prior to 11.2.202.350 on Linux Adobe AIR versions prior to 13.0.0.83 on Android Adobe AIR SDK versions prior to 13.0.0.83 Adobe AIR SDK & Compiler versions prior to 13.0.0.83
Description The issue allows attackers to bypass intended access restrictions and obtain sensitive information via unspecified vectors.
Recommendations For Adobe Flash Player versions prior to 11.7.700.275, update to version 11.7.700.275 or later. For Adobe Flash Player versions 11.8.x through 13.0.x, update to version 13.0.0.182 or later. For Adobe Flash Player on Linux, update to version 11.2.202.350 or later. For Adobe AIR on Android, update to version 13.0.0.83 or later. For Adobe AIR SDK, update to version 13.0.0.83 or later. For Adobe AIR SDK & Compiler, update to version 13.0.0.83 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

ALT-PU-2014-1482
CVE-2014-0508
MGASA-2014-0169
RHSA-2014:0380
RHSA-2014_0380

Affected Products

Alt Linux
Air
Air Sdk
Air Sdk & Compiler
Flash Player
Red Hat
Suse