Buffer overflow in Adobe Flash Player prior to 11.7.700.275 and 11.8.x up to and including 13.0.x prior to 18.104.22.168 on Windows and OS X and prior to 22.214.171.1240 on Linux, Adobe AIR prior to 126.96.36.199 on Android, Adobe AIR SDK prior to 188.8.131.52, and Adobe AIR SDK & Compiler prior to 184.108.40.206 allows malicious users to execute arbitrary code via unspecified vectors.
Most Upvoted Vulmon Research Post
There is no Researcher post for this vulnerability
Would you like to share something about it?
Sign up now to share your knowledge with the
This month’s Adobe Patch Tuesday revolves around Flash. This means the zero-days used by VUPEN to exploit Adobe Reader at CanSecWest last month go unpatched.
CVE-2014-0506 and CVE-2014-0507 deal with remote code execution and were both used separately at CanSecWest’s Pwn2Own. (It looks like these CVEs were initially assigned CVE-2014-0511 and CVE-2014-0510.)
CVE-2014-0508 deals with information leakage, while CVE-2014-0509 deals with an XSS issue. Though we haven’t se...