New Search

Adobe Flash Player before 13.0.0.241 and 14.x before 14.0.0.176 on Windows Adobe AIR before 14.0.0.178 on Windows do not properly restrict discovery of memory addresses

oval:org.mitre.oval:def:26316

Adobe Flash Player before 13.0.0.241 and 14.x before 14.0.0.176 on Windows and OS X and before 11.2.202.400 on Linux Adobe AIR before 14.0.0.178 on Windows and OS X and before 14.0.0.179 on Android Adobe AIR SDK before 14.0.0.178 and Adobe AIR SDK & Compiler before 14.0.0.178 do not properly restrict discovery of memory addresses which allows attackers to bypass the ASLR protection mechanism via unspecified vectors a different vulnerability than CVE-2014-0540 CVE-2014-0542 CVE-2014-0544 and CVE-2014-0545.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows Server 2008 R2
  • Microsoft Windows 7
  • Microsoft Windows Server 2003
  • Microsoft Windows Server 2012 R2
  • Microsoft Windows Server 2008
  • Microsoft Windows 8.1
  • Microsoft Windows 8
  • Microsoft Windows XP
  • Microsoft Windows Vista
  • Microsoft Windows Server 2012
Class:
vulnerability
Reference(s):
  • CVE-2014-0543
Product(s):
  • Adobe AIR
  • Adobe Flash Player