CVE-2016-0985

Name of the Vulnerable Software and Affected Versions Adobe Flash Player versions prior to 18.0.0.329 Adobe Flash Player versions 19.x Adobe Flash Player versions 20.x prior to 20.0.0.306 on Windows and OS X Adobe Flash Player versions prior to 11.2.202.569 on Linux Adobe AIR versions prior to 20.0.0.260 Adobe AIR SDK versions prior to 20.0.0.260 Adobe AIR SDK & Compiler versions prior to 20.0.0.260

Description The issue is related to a type confusion error in the Adobe Integrated Runtime and Flash Player platforms. This error can be exploited by a remote attacker to execute arbitrary code by leveraging the type confusion.

Recommendations For Adobe Flash Player versions prior to 18.0.0.329, update to version 18.0.0.329 or later. For Adobe Flash Player versions 19.x, update to a version with the fix. For Adobe Flash Player versions 20.x prior to 20.0.0.306 on Windows and OS X, update to version 20.0.0.306 or later. For Adobe Flash Player versions prior to 11.2.202.569 on Linux, update to version 11.2.202.569 or later. For Adobe AIR versions prior to 20.0.0.260, update to version 20.0.0.260 or later. For Adobe AIR SDK versions prior to 20.0.0.260, update to version 20.0.0.260 or later. For Adobe AIR SDK & Compiler versions prior to 20.0.0.260, update to version 20.0.0.260 or later.