146 matches found
CVE-2011-2137
CVE-2011-2137: A buffer overflow in Adobe Flash Player allows arbitrary code execution via unspecified vectors. Affected are Flash Player before 10.3.183.5 on Windows, macOS, Linux, and Solaris; Flash Player before 10.3.186.3 on Android; and Adobe AIR before 2.7.1 on Windows/macOS and before 2.7....
CVE-2011-2139
CVE-2011-2139 affects Adobe Flash Player prior to 10.3.183.5 (Windows/macOS/Linux/Solaris) and 10.3.186.3 on Android, plus Adobe AIR prior to 2.7.1 (Windows/Mac) and 2.7.1.1961 (Android). It enables remote attackers to bypass the Same Origin Policy and obtain sensitive information via unspecified...
CVE-2013-1378
CVE-2013-1378 affects Adobe Flash Player prior to 10.3.183.75/11.x before 11.7.700.169 on Windows and macOS, prior to 10.3.183.75/11.x before 11.2.202.280 on Linux, prior to 11.1.111.50 on Android 2.x/3.x, and prior to 11.1.115.54 on Android 4.x; and Adobe AIR before 3.7.0.1530 (and AIR SDK & Com...
CVE-2014-5333
Adobe Flash Player and AIR vulnerabilities (CVE-2014-5333) allow cross-site request forgery (CSRF) against JSONP endpoints via a crafted SWF in an OBJECT element, due to an incomplete fix for CVE-2014-4671. Affected versions include Flash Player before 13.0.0.241 and 14.x before 14.0.0.176 on Win...
CVE-2011-2445
CVE-2011-2445 affects Adobe Flash Player prior to 10.3.183.11 and 11.x prior to 11.1.102.55 (Windows/macOS/Linux/Solaris) and prior to 11.1.102.59 on Android, plus Adobe AIR prior to 3.1.0.4880. The vulnerability allows arbitrary code execution or memory corruption via unspecified vectors, with m...
CVE-2013-0646
CVE-2013-0646 technical details are not publicly provided in the supplied documents. No affected products, root cause, or fixes are confirmed here. Monitor for updates from the referenced advisories.
CVE-2014-0498
CVE-2014-0498: A stack-based buffer overflow in Adobe Flash Player (and related AIR components) allows arbitrary code execution via unspecified vectors. Affected products/versions (per the initial description): Flash Player before 11.7.700.269 and 11.8.x up to 12.0.x before 12.0.0.70 on Windows a...
CVE-2014-0542
Technical details about CVE-2014-0542 are not publicly available in the provided documents; the connected EUVD entries and advisories mention related issues but do not disclose affected products, root causes, or fixes. Monitor for updates.
CVE-2014-0553
CVE-2014-0553 is a use-after-free vulnerability in Adobe Flash Player that could allow arbitrary code execution. It affects Flash Player before 13.0.0.244 and 14.x before 15.0.0.152 on Windows and OS X, and before 11.2.202.406 on Linux; also affects Adobe AIR before 15.0.0.249 (Windows/OS X). Ado...
CVE-2014-0558
CVE-2014-0558 affects Adobe Flash Player prior to 13.0.0.250 and 14.x before 15.0.0.189 on Windows/macOS, and prior to 11.2.202.411 on Linux, plus Adobe AIR prior to 15.0.0.293/SDK before 15.0.0.302. The vulnerability is a memory corruption flaw that allows remote arbitrary code execution or deni...
CVE-2013-0630
CVE-2013-0630 relates to a buffer overflow in Adobe Flash Player (and Adobe AIR) that could allow arbitrary code execution. The provided Connected documents indicate affected products include Flash Player with platform variants (Windows, Mac OS X, Linux, Android) and Adobe AIR. The OpenVAS/Nessus...
CVE-2011-2136
CVE-2011-2136 is an Adobe Flash Player and Adobe AIR vulnerability described as an integer overflow that could allow remote code execution. Affected products include Flash Player prior to 10.3.183.5 on Windows, macOS, Linux, and Solaris; Flash Player prior to 10.3.186.3 on Android; and AIR before...
CVE-2011-2138
CVE-2011-2138 refers to an integer overflow in Adobe Flash Player (and associated AIR) that could allow code execution. Affected product scope includes Flash Player on Windows, macOS, Linux, Solaris (pre-10.3.183.5), and Android (pre-10.3.186.3), plus Adobe AIR on Windows/macOS (pre-2.7.1) and An...
CVE-2011-2454
Adobe Flash Player prior to 10.3.183.11 and 11.x prior to 11.1.102.55 (Windows/macOS/Linux/Solaris) and prior to 11.1.102.59 on Android, plus Adobe AIR prior to 3.1.0.4880, is affected by CVE-2011-2454 (memory corruption) and likely related issues; OpenSUSE-2011-4 patch updates Flash Player to 11...
CVE-2014-0549
CVE-2014-0549 affects Adobe Flash Player and related AIR components. The vulnerability is a memory corruption issue that could allow remote code execution or a denial of service, triggered via unspecified vectors. Affected versions include Flash Player before 13.0.0.244 and 14.x up to 15.x before...
CVE-2011-2452
CVE-2011-2452 is a Flash Player/Adobe AIR vulnerability family affecting multiple platforms (Windows, macOS, Linux, Solaris, Android) with memory corruption that could allow arbitrary code execution or memory corruption-based DoS. The issue is part of a broader set of Adobe Flash Player vulnerabi...
CVE-2012-5256
CVE-2012-5256 concerns Adobe Flash Player and Adobe AIR. The vulnerability allows attackers to execute arbitrary code or cause a denial of service via memory corruption, with unspecified attack vectors. Affected Flash Player versions include Windows/macOS: before 10.3.183.29 and 11.x before 11.4....
CVE-2014-0517
Adobe Flash Player and AIR vulnerabilities (CVE-2014-0517) allow bypass of intended access restrictions in specific older builds: Flash Player before 13.0.0.214 (Windows/macOS) and before 11.2.202.359 (Linux), and AIR SDK before 13.0.0.111. The issue is described as a bypass via unspecified vecto...
CVE-2014-0547
Adobe Flash Player and AIR components are affected by a memory-corruption vulnerability (CVE-2014-0547) that can be triggered by unspecified vectors. Impacted products include Flash Player versions prior to 13.0.0.244 and 14.x/15.x prior to 15.0.0.152 on Windows and OS X, and prior to 11.2.202.40...
CVE-2009-3794
CVE-2009-3794 describes a heap-based buffer overflow in Adobe Flash Player before 10.0.42.34 and Adobe AIR before 1.5.3 triggered by crafted JPEG data in SWF files, enabling remote code execution. Connected advisories (e.g., RHSA-2009:1657/1658) indicate Red Hat patching Flash-Plugin with upgrade...
CVE-2011-2455
CVE-2011-2455 affects Adobe Flash Player and Adobe AIR with memory corruption flaws that can lead to arbitrary code execution or denial of service. Affected versions include Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 (and Android/other platforms as specified), with fixes delivere...
CVE-2013-1380
Adobe Flash Player and AIR are affected by CVE-2013-1380. The vulnerability enables arbitrary code execution or memory corruption via unspecified vectors and is mitigated by updating Flash Player to version 11.2.202.280 (and corresponding AIR fixes) as part of the openSUSE/OpenVAS advisories refe...
CVE-2011-2450
Adobe Flash Player prior to 10.3.183.11 and 11.x prior to 11.1.102.55 (Windows, macOS, Linux, Solaris) and prior to 11.1.102.59 on Android; Adobe AIR prior to 3.1.0.4880 is affected by CVE-2011-2450, causing arbitrary code execution or memory corruption leading to DoS. Root cause described as mem...
CVE-2011-2459
CVE-2011-2459 affects Adobe Flash Player and Adobe AIR as summarized in the initial entry. The vulnerability is described as a memory corruption issue that could enable remote code execution or cause a denial of service via unspecified vectors (notably separate from several related CVEs). Affecte...
CVE-2011-2460
CVE-2011-2460 concerns multiple memory-corruption vulnerabilities in Adobe Flash Player (Windows, macOS, Linux, Solaris) and Adobe AIR, allowing arbitrary code execution or denial of service via unspecified vectors. The description in the initial record identifies affected versions as Flash Playe...
CVE-2012-5249
CVE-2012-5249 is a buffer-overflow in Adobe Flash Player and Adobe AIR that allows arbitrary code execution. Affected: Flash Player pre-10.3.183.29 and pre-11.4.402.287 on Windows/Mac; pre-10.3.183.29 and pre-11.2.202.243 on Linux; Android 2.x–4.x; and Adobe AIR pre-3.4.0.2710. Root cause: buffer...
CVE-2013-2728
CVE-2013-2728 concerns Adobe Flash Player (and AIR) with a memory-corruption based vulnerability that could allow arbitrary code execution or a denial of service via unspecified vectors. The initial description lists affected versions: Flash Player before 10.3.183.86 and 11.x before 11.7.700.202 ...
CVE-2014-0537
CVE-2014-0537 affects Adobe Flash Player and related AIR components across Windows, OS X, Linux, and Android. The issue is a security bypass of intended access restrictions, enabling bypass via unspecified vectors (not a code path described in the provided text). Affected versions include Flash P...
CVE-2014-0538
CVE-2014-0538 is a Use-After-Free vulnerability in Adobe Flash Player (and related AIR components) that could allow arbitrary code execution. According to the initial entry, it affects Flash Player before 13.0.0.241 and 14.x before 14.0.0.176 on Windows and macOS, and before 11.2.202.400 on Linux...
CVE-2014-0550
Technical details about CVE-2014-0550 are not provided in the connected documents. Public information in the initial entry lists affected versions and impact but no concrete root-cause, exploit details, or remediation are included here. Monitor for updates.
CVE-2015-0301
CVE-2015-0301 concerns Adobe Flash Player and Flash plugin file validation. Affected: Flash Player before 13.0.0.260 and 14.x up to 16.x before 16.0.0.257 on Windows/macOS; Flash Player before 11.2.202.429 on Linux; Adobe AIR before 16.0.0.272 on Windows/macOS; plus AIR SDKs before 16.0.0.272. De...
CVE-2011-2415
CVE-2011-2415: Buffer overflow in Adobe Flash Player before 10.3.183.5 (Windows/macOS/Linux/Solaris) and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1 (Windows/macOS) and before 2.7.1.1961 on Android. Attacks could execute arbitrary code via unspecified vectors; product versions affect...
CVE-2011-2451
CVE-2011-2451 affects Adobe Flash Player prior to 10.3.183.11 and 11.x prior to 11.1.102.55 on Windows, macOS, Linux, and Solaris, and prior to 11.1.102.59 on Android, plus Adobe AIR before 3.1.0.4880. The vulnerability allows arbitrary code execution or memory corruption via unspecified vectors ...
CVE-2011-2458
CVE-2011-2458 : Adobe Flash Player (and related AIR runtime) versions prior to the patched releases are vulnerable to a cross-domain policy bypass when loaded via Internet Explorer. Affected: Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows/macOS/Linux/Solaris, and before 11...
CVE-2012-5251
CVE-2012-5251 is a buffer overflow vulnerability in Adobe Flash Player (Windows, Mac OS X, Linux) and Adobe AIR prior to the versions listed in the initial description, allowing attackers to execute arbitrary code via unspecified vectors. The connected sources confirm this CVE is among multiple F...
CVE-2013-0650
CVE-2013-0650 is a use-after-free vulnerability in Adobe Flash Player (Windows, macOS, Linux) and related AIR components that could allow arbitrary code execution via unspecified vectors. Affected versions include Flash Player before 10.3.183.68 and 11.x before 11.6.602.180 on Windows/Mac; before...
CVE-2013-1375
CVE-2013-1375 describes a heap-based buffer overflow in Adobe Flash Player prior to certain 10.3/11.x revisions and Adobe AIR prior to 3.6.0.6090, allowing arbitrary code execution via unspecified vectors. The initial entry lists affected platforms (Windows, macOS, Linux, Android) and correspondi...
CVE-2015-0303
CVE-2015-0303 affects Adobe Flash Player and Adobe AIR as described in APSB15-01. The vulnerability is a memory corruption in Flash Player that could allow remote code execution or a denial of service via unspecified vectors. Affected versions include Flash Player before 13.0.0.260 and 14.x up to...
CVE-2009-3798
CVE-2009-3798 is part of multiple memory‑corruption flaws in Adobe Flash Player/Flash-plugin as of 2009. Connected advisories indicate this vulnerability (among others) was addressed by updating Flash Player to version 10.0.42.34, with Red Hat advisories RHSA-2009:1657/1658 recommending this upgr...
CVE-2011-2456
CVE-2011-2456 refers to a buffer overflow in Adobe Flash Player prior to 10.3.183.11 and 11.x prior to 11.1.102.55 (and on Android prior to 11.1.102.59) that allows an attacker to execute arbitrary code via unspecified vectors. Impact is complete compromise of affected host. Mitigation exists: up...
CVE-2011-2457
CVE-2011-2457 corresponds to a stack-based buffer overflow in Adobe Flash Player, affecting versions prior to 10.3.183.11 and 11.x prior to 11.1.102.55 on Windows, macOS, Linux, and Solaris, plus prior to 11.1.102.59 on Android, and Adobe AIR before 3.1.0.4880. This vulnerability allows arbitrary...
CVE-2012-5255
CVE-2012-5255 corresponds to a buffer overflow in Adobe Flash Player (and related AIR components) that allowed arbitrary code execution via unspecified vectors. Connected advisories confirm this family of vulnerabilities and associate it with Flash Player/Adobe Air, with remediation lists and fix...
CVE-2012-5264
CVE-2012-5264 is a buffer overflow vulnerability in Adobe Flash Player and Adobe AIR. Affected products/versions (per initial description): Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows/Mac; Flash Player before 10.3.183.29 and 11.x before 11.2.202.243 on Linux; Flash Pla...
CVE-2012-5252
CVE-2012-5252 affects Adobe Flash Player and Adobe AIR. The vulnerability is described as memory corruption that can allow arbitrary code execution or a denial of service via unspecified vectors. Affected components include Flash Player versions prior to 10.3.183.29 and 11.x prior to 11.4.402.287...
CVE-2012-5263
CVE-2012-5263 affects Adobe Flash Player (Windows/macOS/Linux) and Adobe AIR prior to the listed build versions, enabling arbitrary code execution or memory corruption via unspecified vectors. Affected Flash Player versions: Windows/macOS before 10.3.183.29 and 11.x before 11.4.402.287; Linux bef...
CVE-2012-5253
Technical details for CVE-2012-5253 are not publicly provided in the connected documents. Monitor for updates from vendor advisories and CVE databases.
CVE-2014-0540
The CVE-2014-0540 entry concerns memory address discovery bypass of ASLR in Adobe Flash Player prior to 13.0.0.241, 14.x before 14.0.0.176 (Windows/macOS), Linux version 11.2.202.400, and Adobe AIR before 14.0.0.178 (Windows/macOS) and before 14.0.0.179 (Android), plus related AIR SDKs. It is des...
CVE-2015-0305
CVE-2015-0305 is a type-confusion vulnerability in Adobe Flash Player (and related AIR components) caused by redefinition of host objects via equality, leading to object type inconsistencies and potential arbitrary code execution. Affected products include Flash Player up to 16.x (Windows/macOS) ...
CVE-2012-5257
CVE-2012-5257 is a buffer overflow in Adobe Flash Player (Windows/Mac/Linux/Android) prior to the specified patched versions, and in Adobe AIR prior to 3.4.0.2710. The vulnerability allows arbitrary code execution via unspecified vectors. Affected versions include Flash Player before 10.3.183.29 ...
CVE-2012-5262
CVE-2012-5262 corresponds to a buffer overflow vulnerability in Adobe Flash Player and Adobe AIR, affecting Flash Player on Windows/Mac OS X prior to 11.4.402.287 (and earlier build 10.3.183.29), Linux prior to 11.2.202.243, Android 2.x/3.x prior to 11.1.111.19, and Android 4.x prior to 11.1.115....