413 matches found
CVE-2012-2034
CVE-2012-2034 concerns memory corruption in Adobe Flash Player (and Adobe AIR) that enables remote code execution or DoS via unspecified vectors. Affected platforms include Windows/macOS prior to 10.3.183.20 and 11.x before 11.3.300.257 (Windows/macOS), Linux prior to 11.2.202.236, Android 2.x/3....
CVE-2011-0609
The CVE-2011-0609 issue is an Adobe Flash Player AVM Bytecode Verification vulnerability that allows remote code execution via crafted SWF content. Affected products include Flash Player 10.2.x and earlier (Windows, macOS, Linux, Solaris), Flash Player 10.1.106.16 and earlier on Android, Adobe AI...
CVE-2010-1297
CVE-2010-1297 affects Adobe Flash Player (versions prior to 9.0.277.0 and 10.x prior to 10.1.53.64), Adobe AIR (prior to 2.0.2.12610), and Adobe Reader/Acrobat (8.x up to 8.2.3; 9.x prior to 9.3.3) on Windows and macOS. The root cause is memory corruption/remote code execution via crafted SWF con...
CVE-2016-1010
CVE-2016-1010 is an integer overflow vulnerability in Adobe Flash Player and Adobe AIR stack. Affected: Flash Player before 18.0.0.333 and 19.x–21.x before 21.0.0.182 on Windows/macOS; Flash before 11.2.202.577 on Linux; Adobe AIR before 21.0.0.176 and AIR SDK/Compiler before 21.0.0.176. Cause: i...
CVE-2015-8651
CVE-2015-8651 is an Adobe Flash Player vulnerability described as an integer overflow that enables remote code execution. The initial entry lists affected Flash Player versions on Windows, OS X, and Linux, and notes exploitation to run arbitrary code via unspecified vectors. Connected sources con...
CVE-2014-8439
CVE-2014-8439 describes a dereferenced memory pointer vulnerability in Adobe Flash Player (and related AIR components) that could allow remote code execution. The initial entry lists multiple affected branches: Flash Player versions prior to 13.0.0.258, 14.x, and 15.x before 15.0.0.239 on Windows...
CVE-2012-2037
Adobe Flash Player and AIR vulnerability CVE-2012-2037 involves memory corruption that could allow remote code execution orDoS. Affected products span multiple platforms; remediation in the related advisories shows upgrading Flash Player to 11.2.202.236 (and corresponding AIR update 3.3.0.3610) m...
CVE-2016-0963
CVE-2016-0963 is an integer overflow vulnerability in Adobe Flash Player (Windows/macOS: before 18.0.0.333 and 19.x through 21.x before 21.0.0.182; Linux: before 11.2.202.577) and in Adobe AIR together with AIR SDK/Compiler (before 21.0.0.176). The condition allows attackers to execute arbitrary ...
CVE-2016-0993
CVE-2016-0993 describes an integer overflow in Adobe Flash Player (before 18.0.0.333 and 19.x–21.x before 21.0.0.182 on Windows/macOS; before 11.2.202.577 on Linux) and in Adobe AIR before 21.0.0.176, including AIR SDKs, that allows attackers to execute arbitrary code via unspecified vectors. Thi...
CVE-2012-2036
Adobe Flash Player and Adobe AIR are affected by multiple CVEs (CVE-2012-2034 to CVE-2012-2040) including an integer overflow and related memory corruption that could allow arbitrary code execution. The CVEs apply to various platforms: Windows, macOS, Linux, and Android, with Adobe AIR тоже affec...
CVE-2013-5330
CVE-2013-5330 is a memory corruption vulnerability in Adobe Flash Player and related Adobe AIR components, arising from an error in parsing specially crafted SWF files. Affected versions include Flash Player before 11.7.700.252 and 11.8.x and 11.9.x before 11.9.900.152 on Windows/macOS, and Linux...
CVE-2013-5331
Adobe Flash Player vulnerability CVE-2013-5331 is a type-confusion remote code execution issue affecting Flash Player on Windows, macOS and Linux prior to patched versions (e.g., 11.2.202.332 for many distributions; 11.9.900.170 in some branches). Exploitation was observed in the wild around Nove...
CVE-2012-2038
CVE-2012-2038 affects Adobe Flash Player across Windows, macOS, Linux, Android, and Adobe AIR before 3.3.0.3610. The issue allows attackers to bypass intended access restrictions and obtain sensitive information via unspecified vectors. Connected sources note that the Flash Player update to 11.2....
CVE-2013-2555
CVE-2013-2555 : Integer overflow in Adobe Flash Player (Windows, macOS, Linux) and Adobe AIR prior to specific builds allows remote code execution via unspecified vectors; affected versions include Flash Player before 10.3.183.75 and 11.x before 11.7.700.169 on Windows/Mac, before 10.3.183.75 and...
CVE-2012-2035
The CVE-2012-2035 entry concerns a stack-based buffer overflow in Adobe Flash Player (Windows/macOS/Linux) and Adobe AIR that enables arbitrary code execution via unspecified vectors. Connected advisories (OpenVAS/Nessus entries and vendor bulletins) corroborate that multiple Flash Player vulnera...
CVE-2012-5278
CVE-2012-5278 is one of multiple vulnerabilities affecting Adobe Flash Player and Adobe AIR; the issue allows bypassing intended access restrictions and arbitrary code execution. Public details in connected advisories identify Flash Player variants affected (Windows, Mac, Linux, Android) and indi...
CVE-2013-5324
CVE-2013-5324 relates to memory corruption in Adobe Flash Player and Adobe AIR. Affected components include Flash Player on Windows, macOS, Linux, Android (various versions) and Adobe AIR/SDK. The vulnerability could allow attackers to execute arbitrary code or cause a denial of service via memor...
CVE-2012-4163
CVE-2012-4163 is a memory-corruption/remote-code-execution vulnerability in Adobe Flash Player (and related Adobe AIR ) that could be exploited via unspecified vectors. Affected versions include Flash Player on Windows/Mac OS X prior to 10.3.183.23 and 11.x prior to 11.4.402.265, Linux prior to 1...
CVE-2012-4167
Adobe Flash Player and Flash plugin are affected by CVE-2012-4167 due to an integer overflow, enabling arbitrary code execution via unspecified vectors. This impacts multiple platforms and product lines (Windows, macOS, Linux, Android) prior to the specified fixed versions in the advisories. Red ...
CVE-2012-5677
CVE-2012-5677 affects Adobe Flash Player and Adobe AIR components. The initial description specifies an integer overflow in Flash Player before 10.3.183.48 and 11.x before 11.5.502.135/136 (various OSs), and Adobe AIR before 3.5.0.880/890, enabling arbitrary code execution via unspecified vectors...
CVE-2012-4165
CVE-2012-4165 concerns Adobe Flash Player and Flash runtime components (including AIR) with memory-corruption based remote code execution via unspecified vectors. Affected versions include Flash Player prior to 10.3.183.23 and software in the 11.x line before 11.4.402.265 on Windows/macOS; on Lin...
CVE-2012-2039
CVE-2012-2039 affects Adobe Flash Player prior to 10.3.183.20 and 11.x prior to 11.3.300.257 on Windows/Mac; prior to 10.3.183.20 and 11.x prior to 11.2.202.236 on Linux; prior to 11.1.111.10 on Android 2.x/3.x; prior to 11.1.115.9 on Android 4.x, and Adobe AIR before 3.3.0.3610. The vulnerabilit...
CVE-2012-5678
CVE-2012-5678 concerns Adobe Flash Player (and related AIR components) with multiple memory-corruption and code-execution vulnerabilities across Windows, Mac, Linux and Android platforms. Affected versions include Flash Player before 10.3.183.48 / 11.x before 11.5.502.135 on Windows, Mac, Linux; ...
CVE-2013-3362
CVE-2013-3362 affects Adobe Flash Player and Adobe AIR across multiple platforms. Affected Flash Player versions (before 11.7.700.242, 11.8.x before 11.8.800.168 on Windows/mac, before 11.2.202.310 on Linux, before 11.1.111.73 on Android 2.x/3.x, before 11.1.115.81 on Android 4.x) and AIR before ...
CVE-2013-3361
CVE-2013-3361 affects Adobe Flash Player and Adobe AIR with memory corruption vulnerabilities that could allow attackers to execute arbitrary code or cause a denial of service. Affected versions span multiple platforms: Flash Player before 11.7.700.242 and 11.8.x before 11.8.800.168 on Windows/ma...
CVE-2012-5676
CVE-2012-5676 concerns a buffer overflow in Adobe Flash Player and Adobe AIR that enables arbitrary code execution. The vulnerability affects multiple platforms: Flash Player before 10.3.183.48 and 11.x before 11.5.502.135 (Windows), before 10.3.183.48 and 11.x before 11.5.502.136 (Mac OS X), bef...
CVE-2013-0638
Adobe Flash Player and Adobe AIR are listed as vulnerable across multiple platforms (Windows, Mac OS X, Linux, Android) with CVE-2013-0638, due to memory corruption allowing arbitrary code execution or denial of service via unspecified vectors. Affected versions include Flash Player before 10.3.1...
CVE-2013-3363
CVE-2013-3363 affects Adobe Flash Player and Adobe AIR prior to specific fixed versions. The description lists vulnerable software: Flash Player before 11.7.700.242 and 11.8.x before 11.8.800.168 on Windows/Mac, before 11.2.202.310 on Linux, before 11.1.111.73 on Android 2.x/3.x, and before 11.1....
CVE-2015-5132
CVE-2015-5132 is a Flash Player buffer overflow vulnerability exploited via parsing of specially crafted SWF files. Affected: Windows/OS X Flash Player < 18.0.0.232; Linux Flash Player
CVE-2015-5133
Technical details about CVE-2015-5133 are not publicly provided in the supplied documents. Monitor for updates from official advisories; the connected entries reference the CVE but do not disclose specifics here.
CVE-2010-2188
Technical details about CVE-2010-2188 are not publicly available in the provided connected documents. Monitor for updates in EUVD entries and other sources for concrete information on affected products, impact, and fixes.
CVE-2015-8068
Technical details about CVE-2015-8068 are not publicly available in the provided connected documents; no concrete affected products, versions, root cause, or remediation are disclosed here. Monitor for updates.
CVE-2010-2179
CVE-2010-2179 is a documented XSS in Adobe Flash Player (and related Flash/AIR components) triggered when Firefox/Chrome access certain URLs. Connected advisories (RHSA-2010-0470 and RHSA-2010-0464) describe a flash-plugin security update addressing this and related CVEs, noting an input sanitiza...
CVE-2015-7663
CVE-2015-7663 is a use-after-free vulnerability affecting Adobe Flash Player prior to 18.0.0.261 and 19.x prior to 19.0.0.245 on Windows/OS X, and prior to 11.2.202.548 on Linux; and Adobe AIR before 19.0.0.241 (and related SDK/Compiler). It allows attackers to execute arbitrary code via unspecif...
CVE-2015-8418
CVE-2015-8418 affects Adobe Flash Player (Windows/macOS: before 18.0.0.268 and 19.x; before 20.0.0.228 for 20.x on Windows/macOS; Linux: before 11.2.202.554) and Adobe AIR (before 20.0.0.204, including AIR SDK before 20.0.0.204) with memory corruption allowing arbitrary code execution or a denial...
CVE-2012-0724
CVE-2012-0724 affects Adobe Flash Player prior to 11.2.202.229 in Google Chrome prior to 18.0.1025.151. The vulnerability enables memory corruption leading to a possible denial of service or other unspecified impact via unknown vectors (distinct from CVE-2012-0725). Connected advisories corrobora...
CVE-2013-5329
CVE-2013-5329 is a memory-corruption vulnerability in multiple Flash Player versions (Windows/macOS: prior to 11.9.900.152; Linux: prior to 11.2.202.327) and in related AIR components (AIR before 3.9.0.1210). Exploitation could lead to arbitrary code execution or a crash. The publicly referenced ...
CVE-2015-8061
Technical details (affected products, versions, root cause, fixes) are not provided in the connected documents for CVE-2015-8061; monitor for updates.
CVE-2015-8634
CVE-2015-8634 describes a use-after-free vulnerability in Adobe Flash Player (Windows/macOS: prior to 18.0.0.324 and 19.x; prior to 20.0.0.267 for 20.x) and Linux prior to 11.2.202.559, as well as in Adobe AIR before 20.0.0.233 (including AIR SDK/Compiler before 20.0.0.233). It allows attackers t...
CVE-2015-3128
CVE-2015-3128 is a use-after-free vulnerability in Adobe Flash Player (Windows/OS X: affected builds include before 13.0.0.302 and 14.x up to 18.x before 18.0.0.203; Linux: before 11.2.202.481) and in Adobe AIR/ AIR SDK/ SDK & Compiler before 18.0.0.180. The issue allows remote code execution via...
CVE-2015-3097
CVE-2015-3097 is an information-disclosure issue in Adobe Flash embedded in Chrome (and other Flash runtimes) where the random Flash heap address was not chosen securely, enabling an attacker to predict the address. The Mac OS X Nessus entry for Google Chrome
CVE-2015-8459
Technical details about CVE-2015-8459 are not publicly available in the provided connected documents. Monitor for updates.
CVE-2010-2178
Adobe Flash Player before 9.0.277.0 and before 10.1.53.64, and Adobe AIR before 2.0.2.12610, are affected by CVE-2010-2178, which is described as enabling memory corruption that could lead to denial of service or possibly arbitrary code execution via unspecified vectors. The description reference...
CVE-2014-0576
CVE-2014-0576 is a memory‑corruption vulnerability in Adobe Flash Player triggered by parsing a specially crafted SWF file, potentially allowing remote arbitrary code execution. Affected products/versions include Flash Player on Windows, OS X, and Linux (per the description), plus related AIR com...
CVE-2015-3085
CVE-2015-3085 is a remote-write-bypass vulnerability in Adobe Flash Player and related AIR components. Affects Flash Player before 13.0.0.289 and 14.x up to 17.x before 17.0.0.188 (Windows/macOS) and before 11.2.202.460 (Linux), as well as Adobe AIR before 17.0.0.172, and AIR SDKs before 17.0.0.1...
CVE-2015-7651
CVE-2015-7651 involves a use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows/OS X, and before 11.2.202.548 on Linux; Adobe AIR before 19.0.0.241 and AIR SDK/Compiler before 19.0.0.241. The root cause is use-after-free via crafted DefineFuncti...
CVE-2015-8424
Technical details for CVE-2015-8424 are not publicly available in the provided connected documents; monitor for updates.
CVE-2015-3134
Technical details about CVE-2015-3134 (affected products, vulnerable components, impact, or fixes) are not publicly provided in the supplied documents. Monitor for updates.
CVE-2015-7632
CVE-2015-7632 is a buffer overflow in Adobe Flash Player and Adobe AIR that allows remote code execution via a Loader object with a crafted loaderBytes property. Affected products include Adobe Flash Player versions prior to 18.0.0.252 and 19.x prior to 19.0.0.207 on Windows/macOS, and prior to 1...
CVE-2016-0998
CVE-2016-0998 is a use-after-free vulnerability in Adobe Flash Player (and related AIR components) that allows arbitrary code execution via unspecified vectors on Windows, OS X, and Linux, affecting Flash Player prior to 18.0.0.333 and 19.x–21.x before 21.0.0.182, and AIR before 21.0.0.176. The r...