PT-2015-2332 · Adobe+3 · Flash Player+6
Published
2015-10-14
·
Updated
2017-07-01
·
CVE-2015-5569
CVSS v2.0
10
High
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Adobe Flash Player versions prior to 18.0.0.252
Adobe Flash Player versions 19.x prior to 19.0.0.207
Adobe AIR versions prior to 19.0.0.213
Adobe AIR SDK versions prior to 19.0.0.213
Adobe AIR SDK & Compiler versions prior to 19.0.0.213
Description
The issue is related to errors in processing the Flash broker API element. Exploitation of this issue may allow a remote attacker to compromise information security. The vulnerability is due to the improper implementation of the Flash broker API.
Recommendations
For Adobe Flash Player versions prior to 18.0.0.252, update to version 18.0.0.252 or later.
For Adobe Flash Player versions 19.x prior to 19.0.0.207, update to version 19.0.0.207 or later.
For Adobe AIR versions prior to 19.0.0.213, update to version 19.0.0.213 or later.
For Adobe AIR SDK versions prior to 19.0.0.213, update to version 19.0.0.213 or later.
For Adobe AIR SDK & Compiler versions prior to 19.0.0.213, update to version 19.0.0.213 or later.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Air
Air Sdk
Air Sdk & Compiler
Flash Player
Red Hat
Suse