PT-2015-1585 · Adobe+1 · Flash Player+4
Published
2015-06-09
·
Updated
2017-09-22
·
CVE-2015-3097
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Adobe AIR versions prior to 18.0.0.144
Adobe AIR SDK versions prior to 18.0.0.144
Adobe AIR SDK & Compiler versions prior to 18.0.0.144
Adobe Flash Player versions prior to 13.0.0.292 and 14.x through 18.x prior to 18.0.0.160
Description
The issue is related to the lack of protection for internal data. Exploitation of this issue may allow a remote attacker to conduct attacks related to memory address errors.
Recommendations
For Adobe AIR versions prior to 18.0.0.144, update to version 18.0.0.144 or later.
For Adobe AIR SDK versions prior to 18.0.0.144, update to version 18.0.0.144 or later.
For Adobe AIR SDK & Compiler versions prior to 18.0.0.144, update to version 18.0.0.144 or later.
For Adobe Flash Player versions prior to 13.0.0.292 and 14.x through 18.x prior to 18.0.0.160, update to version 13.0.0.292 or 18.0.0.160 or later.
Exploit
Fix
Information Disclosure
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Air
Air Sdk
Air Sdk & Compiler
Flash Player