Adobe Flash Player DLL Hijacking

Hi @ll, the executable uninstallers for Flash Player before version 22.0.0.192 and 18.0.0.360 both released on 2016-06-15 are vulnerable to DLL hijacking: they load and execute multiple Windows system DLLs from their "application directory" instead of Windows' "system directory"...

openSUSE Security Update : flash-player (openSUSE-2016-585)

This security update for flash-player to 11.2.202.621 fixes the following issues boo979422 : A critical vulnerability CVE-2016-4117 exists in Adobe Flash Player 21.0.0.226 and earlier versions for Windows, Macintosh, Linux, and Chrome OS. Successful exploitation could cause a crash and potentiall...

April 2016 Adobe Flash Security Update

This security update addresses the following vulnerabilities, which are described in Adobe Security Bulletin APSB16-10: CVE-2016-1006, CVE-2016-1011, CVE-2016-1012, CVE-2016-1013, CVE-2016-1014, CVE-2016-1015, CVE-2016-1016, CVE-2016-1017, CVE-2016-1018, and CVE-2016-1019...

UBUNTU-CVE-2016-1014

Untrusted search path vulnerability in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows local users to gain privileges via a Trojan horse resource in an unspecified directory...

CVE-2016-1014

Untrusted search path vulnerability in Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows local users to gain privileges via a Trojan horse resource in an unspecified directory...

CVE-2016-1014

CVE-2016-1014 affects Adobe Flash Player. It is an untrusted search path vulnerability that could let local users gain privileges via a Trojan horse resource in an unspecified directory. Affected products/versions include Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on W...