35 matches found
CVE-2011-0611
CVE-2011-0611 affects Adobe Flash Player before 10.2.154.27 (Windows/macOS/Linux/Solaris) and 10.2.156.12 and earlier on Android, plus Authplay.dll in Reader/Acrobat components. The vulnerability allows remote attackers to execute arbitrary code or cause a denial of service via crafted Flash cont...
CVE-2014-0502
CVE-2014-0502 is a double‑free vulnerability in Adobe Flash Player and related components that allows remote code execution. Affected products include Flash Player prior to 11.7.700.269 and 11.8.x up to 12.0.x before 12.0.0.70 on Windows/macOS, and before 11.2.202.341 on Linux, as well as Adobe A...
CVE-2012-0773
The CVE-2012-0773 issue concerns the NetStream class in Adobe Flash Player and AIR. Affected components include Flash Player before 10.3.183.18 and 11.x before 11.2.202.223/228 on Windows, macOS, Linux; Solaris Flash Player before 10.3.183.18/11.x before 11.2.202.223; Android 2.x/3.x before 11.1....
CVE-2010-0209
CVE-2010-0209 affects Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3. The vulnerability enables arbitrary code execution or memory corruption via unspecified vectors. Connected sources corroborate multiple advisories and patches surrounding this CVE, noti...
CVE-2014-0516
CVE-2014-0516 refers to a Same Origin Policy bypass in Adobe Flash Player and AIR SDK components. Publicly affected versions include Windows/macOS Flash Player prior to 13.0.0.214 and Linux prior to 11.2.202.359, as well as AIR SDK prior to 13.0.0.111 and AIR SDK & Compiler prior to 13.0.0.111. T...
CVE-2010-2215
CVE-2010-2215 is a click‑jacking vulnerability in Adobe Flash Player (and bundled Flash in AIR). The connected advisories/entries confirm the issue can trick a user into clicking a link or dialog, with remediation by upgrading Flash to fixed versions (for example, Flash Player 9.0.280.0 and relat...
CVE-2014-0491
CVE-2014-0491 affects Adobe Flash Player (Windows/Mac/Linux) and Adobe AIR/SDK/Compiler. The vulnerability allows bypassing protection mechanisms via unknown vectors, leading to potential complete compromise of affected systems. The initial description notes unknown vectors and does not specify t...
CVE-2014-0492
CVE-2014-0492 affects Adobe Flash Player and Adobe AIR components. The issue stems from an “address leak” that defeats ASLR, impacting Flash Player prior to 11.7.700.260 and 11.8.x and 11.9.x before 12.0.0.38 on Windows/Mac, and prior to 11.2.202.335 on Linux, as well as Adobe AIR before 4.0.0.13...
CVE-2014-0499
CVE-2014-0499 affects Adobe Flash Player (Windows, Mac OS X) and Adobe AIR/SDK components. The root cause is that these components do not prevent access to address information, aiding bypass of ASLR via unspecified vectors. Affected Flash Player versions include pre-11.7.700.269 and 11.8.x up to ...
CVE-2010-2216
CVE-2010-2216 affects Adobe Flash Player prior to 9.0.280 and 10.x prior to 10.1.82.76, and Adobe AIR prior to 2.0.3. The description states that attackers can execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, and this is a distinct issue from CVE-20...
CVE-2010-2214
CVE-2010-2214 affects Adobe Flash Player prior to 9.0.280 and 10.x prior to 10.1.82.76, and Adobe AIR prior to 2.0.3. The vulnerability allows arbitrary code execution or memory corruption via unspecified vectors and is described as a separate issue from CVE-2010-0209, CVE-2010-2213, and CVE-2010...
CVE-2010-2213
CVE-2010-2213 describes a vulnerability in Adobe Flash Player (before 9.0.280 and 10.x before 10.1.82.76) and Adobe AIR before 2.0.3 , enabling attackers to execute arbitrary code or cause a memory corruption-based denial of service via unspecified vectors. The issue is confirmed across connected...
CVE-2014-0520
CVE-2014-0520 is a security bypass vulnerability in Adobe Flash Player and AIR components. Affected are Flash Player versions prior to 13.0.0.214 (Windows/macOS) and prior to 11.2.202.359 (Linux), plus AIR SDK before 13.0.0.111 and AIR SDK & Compiler before 13.0.0.111. The issue stems from an err...
CVE-2014-0498
CVE-2014-0498: A stack-based buffer overflow in Adobe Flash Player (and related AIR components) allows arbitrary code execution via unspecified vectors. Affected products/versions (per the initial description): Flash Player before 11.7.700.269 and 11.8.x up to 12.0.x before 12.0.0.70 on Windows a...
CVE-2013-0646
CVE-2013-0646 technical details are not publicly provided in the supplied documents. No affected products, root cause, or fixes are confirmed here. Monitor for updates from the referenced advisories.
CVE-2014-0517
Adobe Flash Player and AIR vulnerabilities (CVE-2014-0517) allow bypass of intended access restrictions in specific older builds: Flash Player before 13.0.0.214 (Windows/macOS) and before 11.2.202.359 (Linux), and AIR SDK before 13.0.0.111. The issue is described as a bypass via unspecified vecto...
CVE-2013-0650
CVE-2013-0650 is a use-after-free vulnerability in Adobe Flash Player (Windows, macOS, Linux) and related AIR components that could allow arbitrary code execution via unspecified vectors. Affected versions include Flash Player before 10.3.183.68 and 11.x before 11.6.602.180 on Windows/Mac; before...
CVE-2013-1375
CVE-2013-1375 describes a heap-based buffer overflow in Adobe Flash Player prior to certain 10.3/11.x revisions and Adobe AIR prior to 3.6.0.6090, allowing arbitrary code execution via unspecified vectors. The initial entry lists affected platforms (Windows, macOS, Linux, Android) and correspondi...
CVE-2013-2728
CVE-2013-2728 concerns Adobe Flash Player (and AIR) with a memory-corruption based vulnerability that could allow arbitrary code execution or a denial of service via unspecified vectors. The initial description lists affected versions: Flash Player before 10.3.183.86 and 11.x before 11.7.700.202 ...
CVE-2014-0519
CVE-2014-0519 describes a sandbox security bypass in Adobe Flash Player and AIR components. The flaw affects Flash Player pre-13.0.0.214 on Windows/macOS and pre-11.2.202.359 on Linux, plus AIR SDK before 13.0.0.111, enabling attackers to bypass access restrictions via crafted files opened by a u...
CVE-2014-0518
Adobe Flash Player vulnerability CVE-2014-0518 (and related CVEs) allows bypass of intended access restrictions via unspecified vectors. Affected products/versions noted in the initial entry: Flash Player for Windows and macOS prior to 13.0.0.214, Flash Player for Linux prior to 11.2.202.359, Ado...
CVE-2013-1371
Adobe Flash Player and related AIR components were vulnerable to arbitrary code execution or memory corruption via unspecified vectors (CVE-2013-1371). Affected versions included Flash Player before 10.3.183.68 and 11.x before 11.6.602.180 on Windows/macOS, before 10.3.183.68 and 11.x before 11.2...
CVE-2007-3640
Adobe Integrated Runtime (AIR, also known as Apollo) is affected by CVE-2007-3640. The issue allows context-dependent attackers to modify arbitrary files inside an executing .air file (compiled AIR application) and perform cross-site scripting (XSS) attacks, demonstrated by an app that modifies a...
CVE-2013-3332
Technical details are not publicly available in the provided documents. Monitor for updates from the sources; no specific affected products, versions, or fixes are disclosed here.
CVE-2013-3327
Technical details for CVE-2013-3327 are not publicly available in the provided connected documents. Please monitor for updates from official advisories; current sources here reference multiple related CVEs but provide no implementation specifics.
CVE-2013-3330
Technical details for CVE-2013-3330 are not publicly available in the provided connected documents; no affected products, exact vulnerability vectors, impact, or fixes are described here. Monitor for updates.
CVE-2013-3325
Technical details for CVE-2013-3325 are not publicly available in the provided documents. The connected EUVD entries mention malware in sbrugna but do not specify affected product/version, root cause, impact, or remediation for this CVE. Monitor for updates.
CVE-2013-3326
Technical details for CVE-2013-3326 are not publicly available in the provided connected documents; monitor for updates.
CVE-2013-3333
Technical details for CVE-2013-3333 are not publicly available in the provided connected documents. Monitor for updates; no concrete product/version/impact data is disclosed here.
CVE-2013-3324
Technical details for CVE-2013-3324 are not publicly available in the provided documents. Monitor for updates and gather future information from linked sources.
CVE-2013-3328
Technical details about CVE-2013-3328 are not provided in the connected documents. The available sources do not disclose affected products, versions, roots, or fixes. Monitor for updates.
CVE-2013-3335
Technical details for CVE-2013-3335 are not provided in the connected EUVD entries. The documents reference malware notes but do not specify vulnerability mechanics, affected products, or fixes. Monitor for updates from vendors/ENISA for concrete details.
CVE-2013-3329
Technical details about CVE-2013-3329 are not publicly available in the provided documents; no product, version, impact or remediation information is included beyond the initial description. Monitor for updates.
CVE-2013-3331
Adobe Flash Player and Adobe AIR are affected by CVE-2013-3331, with multiple platform-specific version ranges vulnerable to arbitrary code execution or memory corruption via unspecified vectors. Affected Flash Player versions: before 10.3.183.86 and 11.x before 11.7.700.202 on Windows/Mac; befor...
CVE-2013-3334
Technical details about CVE-2013-3334 are not publicly available in the provided connected documents. The EUVD entries reference malware but do not specify affected products, root causes, or fixes for this CVE. Monitor for updates.