PT-2015-1465 · Adobe+3 · Air Sdk & Compiler+6
Published
2015-07-08
·
Updated
2017-09-22
·
CVE-2015-4429
CVSS v2.0
10
High
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Adobe Flash Player versions prior to 13.0.0.302 and 14.x through 18.x before 18.0.0.203
Adobe AIR versions prior to 18.0.0.180
Adobe AIR SDK versions prior to 18.0.0.180
Adobe AIR SDK & Compiler versions prior to 18.0.0.180
Description
The issue is related to errors in pointer dereferencing, which can be exploited by a remote attacker to cause a denial of service. The vulnerability may also have unspecified other impacts through unknown vectors.
Recommendations
For Adobe Flash Player versions prior to 13.0.0.302 and 14.x through 18.x before 18.0.0.203, update to version 13.0.0.302 or later, or 18.0.0.203 or later.
For Adobe AIR versions prior to 18.0.0.180, update to version 18.0.0.180 or later.
For Adobe AIR SDK versions prior to 18.0.0.180, update to version 18.0.0.180 or later.
For Adobe AIR SDK & Compiler versions prior to 18.0.0.180, update to version 18.0.0.180 or later.
Exploit
Fix
NULL Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Air
Air Sdk
Air Sdk & Compiler
Flash Player
Red Hat
Suse