Use-after-free vulnerability in Adobe Flash Player before 10.3.183.68 and 11.x before 11.6.602.180 on Windows and Mac OS X, before 10.3.183.68 and 11.x before 11.2.202.275 on Linux, before 11.1.111.44 on Android 2.x and 3.x, and before 11.1.115.48 on Android 4.x; Adobe AIR before 3.6.0.6090; Adobe AIR SDK before 3.6.0.6090; and Adobe AIR SDK & Compiler before 3.6.0.6090 allows attackers to execute arbitrary code via unspecified vectors.
oryginał ENAV:N/AC:L/Au:N/C:C/I:C/A:CAdobe Air Sdk
APPAdobe3.0.0.4080≤ 3.6.0.597Adobe Air Sdk And Compiler
APPAdobe≤ 3.6.0.599Adobe Flash Player
APPAdobe11.011.0.1.15211.0.1.15311.111.1.102.5511.1.102.5911.1.102.6211.1.102.6311.1.111.511.1.111.611.1.111.711.1.111.811.1.115.3411.1.115.3611.1.115.7+ 32 więcejAdobe Flash Player For Android
APPAdobe10.1.106.1710.2.157.5110.3.186.711.0.1.15311.1.102.5911.1.111.1011.1.111.1611.1.111.1911.1.111.2411.1.111.2911.1.111.3111.1.111.3211.1.111.511.1.111.611.1.111.7+ 3 więcejApple Mac Os X
OSApplewszystkie wersjeGoogle Android
OSGoogle2.02.0.12.12.22.2.12.2.22.2.32.32.3.12.3.22.3.32.3.42.3.52.3.62.3.7+ 14 więcejLinux Kernel
OSLinuxwszystkie wersjeMicrosoft Windows
OSMicrosoftwszystkie wersje
Powiązane podatności
Atak na łańcuch dostaw DAEMON Tools Lite — trojanizacja instalatorów
Type confusion w V8 (Google Chrome) — zdalne uszkodzenie sterty
Commvault Command Center – nieuwierzytelniony RCE przez path traversal w ZIP
Path Traversal w Kingsoft WPS Office — ładowanie dowolnej biblioteki Windows
PHP CGI argument injection – RCE na Windows przez mechanizm Best-Fit