Use-after-free vulnerability in Adobe Flash Player before 10.3.183.63 and 11.x before 11.6.602.168 on Windows, before 10.3.183.61 and 11.x before 11.6.602.167 on Mac OS X, before 10.3.183.61 and 11.x before 11.2.202.270 on Linux, before 11.1.111.43 on Android 2.x and 3.x, and before 11.1.115.47 on Android 4.x; Adobe AIR before 3.6.0.597; and Adobe AIR SDK before 3.6.0.599 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2013-0649 and CVE-2013-1374.
AV:N/AC:L/Au:N/C:C/I:C/A:CAdobe Air
APPAdobe< 3.6.0.597Adobe Air Sdk
APPAdobe< 3.6.0.599Adobe Flash Player
APPAdobe10.3 – 10.3.183.63 (bez)10.3 – 10.3.183.61 (bez)11.1 – 11.1.115.47 (bez)11.6 – 11.6.602.167 (bez)11.1 – 11.1.111.43 (bez)11.2 – 11.2.202.270 (bez)11.6 – 11.6.602.168 (bez)Apple Mac Os X
OSApplewszystkie wersjeGoogle Android
OSGoogle4.0 – 4.4.43.0 – 3.2.62.0 – 2.3.7Linux Kernel
OSLinuxwszystkie wersjeMicrosoft Windows
OSMicrosoftwszystkie wersje
Related vulnerabilities
Atak na łańcuch dostaw DAEMON Tools Lite — trojanizacja instalatorów
Type confusion w V8 (Google Chrome) — zdalne uszkodzenie sterty
Commvault Command Center – nieuwierzytelniony RCE przez path traversal w ZIP
Path Traversal w Kingsoft WPS Office — ładowanie dowolnej biblioteki Windows
PHP CGI argument injection – RCE na Windows przez mechanizm Best-Fit