Skip to main content

Adobe Flash Player / AIR Security Bypass Vulnerability

Last Update Date: 15 Jan 2014 12:31 Release Date: 15 Jan 2014 3916 Views

RISK: High Risk

TYPE: Clients - Audio & Video

TYPE: Audio & Video

A vulnerability has been identified in Adobe Flash Player and Adobe AIR, which can be exploited by malicious people to bypass certain security restrictions.

 

The vulnerability is caused due to an unspecified error and can be exploited to bypass certain security protections.

 

Additionally a weakness exists, which can be exploited to disclose certain memory information and e.g. defeat memory address layout randomization.


Impact

  • Security Restriction Bypass
  • Information Disclosure

System / Technologies affected

  • Adobe Flash Player 11.9.900.170
  • Adobe AIR, AIR SDK, and AIR SDK & Compiler versions 3.9.0.1380 and prior

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Upgrade to a fixed version.

 


Vulnerability Identifier


Source


Related Link