Adobe Flash Player / AIR Multiple Vulnerabilities

Last Update Date: 11 Dec 2013 09:59 Release Date: 11 Dec 2013 3651 Views

RISK: High Risk

High Risk

TYPE: Clients - Audio & Video

TYPE: Audio & Video

Multiple vulnerabilities have been identified in Adobe Flash Player and Adobe AIR, which can be exploited by malicious people to compromise a user's system.

  1. A type confusion error exists.
  2. A use-after-free error when unloading the Flash Player module can be exploited to dereference already freed memory.

Successful exploitation of the vulnerabilities may allow execution of arbitrary code.

Impact

  • Remote Code Execution

System / Technologies affected

  • Adobe Flash Player versions 11.9.900.152 and prior for Windows and Macintosh
  • Adobe Flash Player versions 11.2.202.327 and prior for Linux
  • Adobe AIR versions 3.9.0.1210 and prior for Windows, Macintosh, and Android
  • Adobe AIR SDK & Compiler versions 3.9.0.1210 and prior

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Update to a fixed version.

Vulnerability Identifier

Source

Related Link

Share with

Previous

Microsoft Windows Includes An Invalid Certificate Vulnerability

10 Dec 2013 4250 Views

Next

Adobe Shockwave Player Multiple Memory Corruption Vulnerabilities

11 Dec 2013 3561 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY