9.3
CVSSv2

CVE-2014-0507

Published: 08/04/2014 Updated: 16/12/2017
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
VMScore: 828
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Summary

Buffer overflow in Adobe Flash Player prior to 11.7.700.275 and 11.8.x up to and including 13.0.x prior to 13.0.0.182 on Windows and OS X and prior to 11.2.202.350 on Linux, Adobe AIR prior to 13.0.0.83 on Android, Adobe AIR SDK prior to 13.0.0.83, and Adobe AIR SDK & Compiler prior to 13.0.0.83 allows malicious users to execute arbitrary code via unspecified vectors.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.
Vulnerable Product Search on Vulmon Subscribe to Product

adobe flash_player 11.7.700.252

adobe flash_player 11.9.900.152

adobe flash_player 11.7.700.224

adobe flash_player 11.7.700.202

adobe flash_player 11.5.502.146

adobe flash_player 11.5.502.135

adobe flash_player 11.3.300.257

adobe flash_player 11.3.300.262

adobe flash_player 11.2.202.280

adobe flash_player 11.2.202.285

adobe flash_player 11.2.202.228

adobe flash_player 11.2.202.243

adobe flash_player 11.1.115.54

adobe flash_player 11.1.115.58

adobe flash_player 11.1.102.63

adobe flash_player 11.1.102.55

adobe flash_player 12.0.0.43

adobe flash_player 11.7.700.260

adobe flash_player 11.8.800.97

adobe flash_player 11.7.700.242

adobe flash_player 11.6.602.180

adobe flash_player 11.6.602.168

adobe flash_player 11.4.402.278

adobe flash_player 11.4.402.287

adobe flash_player 11.3.300.273

adobe flash_player 11.2.202.235

adobe flash_player 11.2.202.275

adobe flash_player 11.2.202.262

adobe flash_player 11.2.202.261

adobe flash_player 11.1.102.59

adobe flash_player 11.1

adobe flash_player 11.1.111.8

adobe flash_player 11.1.115.7

adobe flash_player 12.0.0.41

adobe flash_player 12.0.0.38

adobe flash_player 11.9.900.117

adobe flash_player 11.8.800.168

adobe flash_player 11.7.700.169

adobe flash_player 11.6.602.171

adobe flash_player 11.5.502.149

adobe flash_player 11.4.402.265

adobe flash_player 11.3.300.265

adobe flash_player 11.3.300.268

adobe flash_player 11.2.202.238

adobe flash_player 11.2.202.233

adobe flash_player 11.2.202.223

adobe flash_player 11.2.202.270

adobe flash_player 11.1.111.44

adobe flash_player 11.1.115.48

adobe flash_player 11.0.1.153

adobe flash_player 11.0.1.152

adobe flash_player 11.0

adobe flash_player 11.7.700.257

adobe flash_player 11.9.900.170

adobe flash_player 11.8.800.94

adobe flash_player 11.7.700.232

adobe flash_player 11.6.602.167

adobe flash_player 11.5.502.110

adobe flash_player 11.5.502.136

adobe flash_player 11.3.300.271

adobe flash_player 11.3.300.270

adobe flash_player 11.2.202.273

adobe flash_player 11.2.202.251

adobe flash_player 11.2.202.236

adobe flash_player 11.2.202.258

adobe flash_player 11.1.111.50

adobe flash_player 11.1.111.54

adobe flash_player 11.1.115.34

adobe flash_player 11.1.102.62

adobe flash_player

adobe flash_player 11.2.202.297

adobe flash_player 11.2.202.335

adobe flash_player 11.2.202.332

adobe flash_player 11.2.202.291

adobe flash_player 11.2.202.341

adobe flash_player 11.2.202.336

adobe flash_player 11.2.202.327

adobe flash_player 11.2.202.310

Recent Articles

Adobe Updates April 2014
Securelist • Roel Schouwenberg • 08 Apr 2014

This month’s Adobe Patch Tuesday revolves around Flash. This means the zero-days used by VUPEN to exploit Adobe Reader at CanSecWest last month go unpatched.
CVE-2014-0506 and CVE-2014-0507 deal with remote code execution and were both used separately at CanSecWest’s Pwn2Own. (It looks like these CVEs were initially assigned CVE-2014-0511 and CVE-2014-0510.)

CVE-2014-0508 deals with information leakage, while CVE-2014-0509 deals with an XSS issue. Though we haven’t se...