CVE-2014-0492
published 2014-01-15CVE-2014-0492: Adobe Flash Player before 11.7.700.260 and 11.8.x and 11.9.x before 12.0.0.38 on Windows and Mac OS X and before 11.2.202.335 on Linux, Adobe AIR before…
critical10CVSS 3.1
AVNACLAuNCCICAC
Adobe Flash Player before 11.7.700.260 and 11.8.x and 11.9.x before 12.0.0.38 on Windows and Mac OS X and before 11.2.202.335 on Linux, Adobe AIR before 4.0.0.1390, Adobe AIR SDK before 4.0.0.1390, and Adobe AIR SDK & Compiler before 4.0.0.1390 allow attackers to defeat the ASLR protection mechanism by leveraging an "address leak."
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | adobe_air | < 4.0.0.1390 | 4.0.0.1390 |
| adobe | adobe_air_sdk | < 4.0.0.1390 | 4.0.0.1390 |
| adobe | flash_player | >= 11.0 < 11.7.700.260 | 11.7.700.260 |
| adobe | flash_player | >= 11.0 < 11.2.202.335 | 11.2.202.335 |
| adobe | flash_player | >= 11.8 < 11.8.800.175 | 11.8.800.175 |
| adobe | flash_player | >= 11.9 < 12.0.0.38 | 12.0.0.38 |