PT-2016-1754 · Adobe+3 · Flash Player+3
Published
2016-04-08
·
Updated
2023-01-26
·
CVE-2016-1006
CVSS v2.0
10
High
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Adobe Flash Player versions prior to 18.0.0.343
Adobe Flash Player versions 19.x through 21.x prior to 21.0.0.213 on Windows and OS X
Adobe Flash Player versions prior to 11.2.202.616 on Linux
Description
The issue allows attackers to bypass the ASLR protection mechanism via JIT data, potentially due to errors in security settings. This could enable a remote attacker to exploit the vulnerability and bypass the ASLR protection mechanism.
Recommendations
For Adobe Flash Player versions prior to 18.0.0.343, update to version 18.0.0.343 or later.
For Adobe Flash Player versions 19.x through 21.x prior to 21.0.0.213 on Windows and OS X, update to version 21.0.0.213 or later.
For Adobe Flash Player versions prior to 11.2.202.616 on Linux, update to version 11.2.202.616 or later.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Flash Player
Red Hat
Suse