Skip to main content

Adobe Flash Player / AIR Multiple Vulnerabilities

Last Update Date: 14 May 2014 14:56 Release Date: 14 May 2014 3694 Views

RISK: High Risk

TYPE: Clients - Audio & Video

TYPE: Audio & Video

Multiple vulnerabilities have been reported in Adobe Flash Player and Adobe AIR, which can be exploited by malicious people to bypass certain security restrictions and compromise a user's system.

  1. A use-after free error can be exploited to corrupt memory.
    Successful exploitation of this vulnerability may allow execution of arbitrary code.
     
  2. An unspecified error can be exploited to bypass the same origin policy.
  3. Multiple unspecified errors can be exploited to bypass certain security restrictions.

Impact

  • Remote Code Execution
  • Information Disclosure
  • Data Manipulation

System / Technologies affected

  • Adobe Flash Player versions 13.0.0.206 and prior for Windows and Macintosh.
  • Adobe Flash Player versions 11.2.202.356 and prior for Linux.
  • Adobe AIR SDK and SDK & Compiler versions 13.0.0.83 and prior.

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Update to fixed version

Vulnerability Identifier


Source


Related Link