Adobe Flash Player Remote Arbitrary Code Execution Vulnerability

Last Update Date: 24 Jun 2015 09:24 Release Date: 24 Jun 2015 3538 Views

RISK: Extremely High Risk

Extremely High Risk

TYPE: Clients - Audio & Video

TYPE: Audio & Video

A vulnerability was identified in Adobe Flash Player. A remote user can cause arbitrary code to be executed on the target user's system.

 

A remote user can create specially crafted content that, when loaded by the target user, will trigger a heap overflow and execute arbitrary code on the target system. The code will run with the privileges of the target user.

 

NOTE: This vulnerability is being actively exploited. Systems running Internet Explorer for Windows 7 and below, as well as Firefox on Windows XP, are known targets.

Impact

  • Remote Code Execution

System / Technologies affected

  • Adobe Flash Player 18.0.0.161 and earlier versions
  • Adobe Flash Player Extended Support Release version 13.0.0.292 and earlier 13.x versions
  • Adobe Flash Player 11.2.202.466 and earlier 11.x versions for Linux

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • The vendor has issued a fix (18.0.0.194; ESR 13.0.0.296; 11.2.202.468 for Linux).

Vulnerability Identifier

Source

Related Link

Share with

Previous

Google Chrome Multiple Vulnerabilities

24 Jun 2015 3261 Views

Next

Cisco products multiple vulnerabilities

26 Jun 2015 3381 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY