CVE-2015-3088

Name of the Vulnerable Software and Affected Versions Adobe Flash Player versions 13.0.0.289 and earlier, 14.x through 17.x before 17.0.0.188 Adobe Flash Player version 11.2.202.460 and earlier on Linux Adobe AIR versions 17.0.0.172 and earlier Adobe AIR SDK versions 17.0.0.172 and earlier Adobe AIR SDK & Compiler versions 17.0.0.172 and earlier

Description The issue is related to a heap-based buffer overflow that allows attackers to execute arbitrary code via unspecified vectors. This can be exploited by a remote attacker to execute arbitrary code. The vulnerability is associated with a buffer overflow in the software platform, which can be exploited to gain remote code execution.

Recommendations For Adobe Flash Player versions 13.0.0.289 and earlier, update to version 13.0.0.289 or later. For Adobe Flash Player versions 14.x through 17.x, update to version 17.0.0.188 or later. For Adobe Flash Player on Linux, update to version 11.2.202.460 or later. For Adobe AIR versions 17.0.0.172 and earlier, update to version 17.0.0.172 or later. For Adobe AIR SDK versions 17.0.0.172 and earlier, update to version 17.0.0.172 or later. For Adobe AIR SDK & Compiler versions 17.0.0.172 and earlier, update to version 17.0.0.172 or later.