Lucene search

K
ubuntucveUbuntu.comUB:CVE-2014-0499
HistoryFeb 21, 2014 - 12:00 a.m.

CVE-2014-0499

2014-02-2100:00:00
ubuntu.com
ubuntu.com
21
adobe flash player
adobe air
aslr protection
windows
mac os x
linux
android

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

EPSS

0.003

Percentile

69.6%

Adobe Flash Player before 11.7.700.269 and 11.8.x through 12.0.x before
12.0.0.70 on Windows and Mac OS X and before 11.2.202.341 on Linux, Adobe
AIR before 4.0.0.1628 on Android, Adobe AIR SDK before 4.0.0.1628, and
Adobe AIR SDK & Compiler before 4.0.0.1628 do not prevent access to address
information, which makes it easier for attackers to bypass the ASLR
protection mechanism via unspecified vectors.

OSVersionArchitecturePackageVersionFilename
ubuntu12.04noarchadobe-flashplugin<Β 11.2.202.341-0precise1UNKNOWN
ubuntu12.10noarchadobe-flashplugin<Β 11.2.202.341-0quantal1UNKNOWN
ubuntu13.10noarchadobe-flashplugin<Β 11.2.202.341-0saucy1UNKNOWN
ubuntu12.04noarchflashplugin-nonfree<Β 11.2.202.341ubuntu0.12.04.1UNKNOWN
ubuntu12.10noarchflashplugin-nonfree<Β 11.2.202.341ubuntu0.12.10.1UNKNOWN
ubuntu13.10noarchflashplugin-nonfree<Β 11.2.202.341ubuntu0.13.10.1UNKNOWN

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

EPSS

0.003

Percentile

69.6%