21 matches found
CVE-2010-0209
CVE-2010-0209 affects Adobe Flash Player before 9.0.280 and 10.x before 10.1.82.76, and Adobe AIR before 2.0.3. The vulnerability enables arbitrary code execution or memory corruption via unspecified vectors. Connected sources corroborate multiple advisories and patches surrounding this CVE, noti...
CVE-2008-5499
CVE-2008-5499 pertains to Adobe Flash Player for Linux (affected versions: 10.0.12.36 and 9.0.151.0 and earlier). The root cause is a failure to validate input while parsing malicious SWF content, enabling remote arbitrary code execution when a user loads a crafted SWF file. Connected advisories ...
CVE-2016-7865
CVE-2016-7865 affects Adobe Flash Player: type confusion in Flash components. Public advisories link it to Flash Player 11.2.202.644 (and earlier 11.x) and also to the 23.0.0.207 line, with exploitation capable of arbitrary code execution. Connected documents confirm this CVE as part of multiple ...
CVE-2016-7857
Adobe Flash Player 23.0.0.205 and earlier, and 11.2.202.643 and earlier contain a use-after-free vulnerability that could allow remote arbitrary code execution when handling SWF content. The issue (CVE-2016-7857) is addressed in updates to Flash Player 23.x and 11.x lines (e.g., 23.0.0.207 and 11...
CVE-2010-2215
CVE-2010-2215 is a click‑jacking vulnerability in Adobe Flash Player (and bundled Flash in AIR). The connected advisories/entries confirm the issue can trick a user into clicking a link or dialog, with remediation by upgrading Flash to fixed versions (for example, Flash Player 9.0.280.0 and relat...
CVE-2016-7859
Adobe Flash Player versions 23.0.0.205 and earlier, and 11.2.202.643 and earlier, contain a use-after-free vulnerability that could allow remote arbitrary code execution. The issue affects Flash Player across major platforms and was addressed in updated builds: 23.0.0.207 (Flash Player 23.x) and ...
CVE-2009-0114
CVE-2009-0114 is an Adobe Flash Player vulnerability affecting Flash Player 9.x before 9.0.159.0 and 10.x before 10.0.22.87 (and possibly other versions). The issue is described as an unspecified vulnerability in the Settings Manager that could allow a remote attacker to trick a user into visitin...
CVE-2009-0520
CVE-2009-0520 affects Adobe Flash Player 9.x prior to 9.0.159.0 and 10.x prior to 10.0.22.87. The issue arises when Flash processing SWF content fails to properly remove references to destroyed objects, enabling remote code execution via a crafted SWF file (buffer overflow-related). Public adviso...
CVE-2016-7858
CVE-2016-7858 is a use-after-free vulnerability in Adobe Flash Player that could allow remote arbitrary code execution. Affected products include Flash Player 23.0.0.205 and earlier and 11.2.202.643 and earlier (Windows/other platforms), with exploitation possible via processing a crafted SWF fil...
CVE-2009-0519
CVE-2009-0519 is a vulnerability in Adobe Flash Player 9.x (before 9.0.159.0) and Flash Player 10.x (before 10.0.22.87) that could be triggered by a crafted Shockwave Flash (.swf) file, potentially causing a browser crash or remote code execution. The issue is described across multiple advisories...
CVE-2010-2216
CVE-2010-2216 affects Adobe Flash Player prior to 9.0.280 and 10.x prior to 10.1.82.76, and Adobe AIR prior to 2.0.3. The description states that attackers can execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, and this is a distinct issue from CVE-20...
CVE-2010-2214
CVE-2010-2214 affects Adobe Flash Player prior to 9.0.280 and 10.x prior to 10.1.82.76, and Adobe AIR prior to 2.0.3. The vulnerability allows arbitrary code execution or memory corruption via unspecified vectors and is described as a separate issue from CVE-2010-0209, CVE-2010-2213, and CVE-2010...
CVE-2010-2213
CVE-2010-2213 describes a vulnerability in Adobe Flash Player (before 9.0.280 and 10.x before 10.1.82.76) and Adobe AIR before 2.0.3 , enabling attackers to execute arbitrary code or cause a memory corruption-based denial of service via unspecified vectors. The issue is confirmed across connected...
CVE-2016-7862
Adobe Flash Player contains a use-after-free vulnerability (CVE-2016-7862) in versions up to 23.0.0.205–23.0.0.207 and 11.2.202.643–11.2.202.644 that could lead to arbitrary code execution. Exploitation involves SWF handling and is confirmed by multiple advisories; updated builds address the issu...
CVE-2016-7863
CVE-2016-7863 is a use-after-free vulnerability in Adobe Flash Player reported in 2016, affecting Flash Player versions 23.0.0.205 and earlier and 11.2.202.643 and earlier, with successful exploitation able to execute arbitrary code. Multiple downstream advisories confirm a remediation via update...
CVE-2016-7860
CVE-2016-7860 is an exploitable type-confusion vulnerability in Adobe Flash Player that could lead to arbitrary code execution. According to the provided documents, affected versions include Flash Player 23.0.0.205 and earlier and 11.2.202.643 and earlier. The vulnerabilities are addressed in upd...
CVE-2016-7861
CVE-2016-7861 is an Adobe Flash Player type-confusion vulnerability that could enable remote code execution. Affected products/versions include Flash Player 11.2.202.643 and 23.0.0.205 and earlier. Connected advisories group this CVE with other Flash flaws (CVE-2016-7857/7858/7859/7860/7862/7863/...
CVE-2016-7864
CVE-2016-7864 is a use-after-free vulnerability in Adobe Flash Player affecting Flash Player 23.0.0.205 and earlier, and 11.2.202.643 and earlier. Exploitation could lead to arbitrary code execution. Connected advisories confirm affected variants and document patches: Mageia/GLSA notes for Flash ...
CVE-2009-0521
CVE-2009-0521 corresponds to an untrusted search path vulnerability in Adobe Flash Player on Linux via a crafted library in a directory on the RPATH. The issue, linked to the same RHSA-2009:0332 advisory, affects Flash Player/flash-plugin for Linux and can enable a local attacker to execute arbit...
CVE-2016-0959
The CVE-2016-0959 entry concerns a use-after-free vulnerability in multiple Adobe Flash Player components (Desktop Runtime prior to 20.0.0.267, Extended Support Release prior to 18.0.0.324, Chrome/Edge/IE builds prior to 20.0.0.267, Linux version prior to 11.2.202.559, AIR Runtime/SDK before 20.0...
CVE-2009-0522
CVE-2009-0522 affects Adobe Flash Player 9.x before 9.0.159.0 and 10.x before 10.0.22.87 on Windows, where an attacker could trick a user into visiting an arbitrary URL via manipulation of the mouse pointer display (a clickjacking-like issue). Multiple connected sources corroborate the Windows-sp...