Microsoft Issues Adobe Flash Player Multiple Flaws Lets Remote Users Execute Arbitrary Code Vulnerabilities
4 Mar. 2016
Summary
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR SDK before 20.0.0.233, and Adobe AIR SDK & Compiler before 20.0.0.233 allows attackers to execute arbitrary code.
Vulnerable Systems:
*Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR SDK before 20.0.0.233, and Adobe AIR SDK & Compiler before 20.0.0.233
Immune Systems:
*Adobe Flash Player after 18.0.0.324 and 19.x and 20.x after 20.0.0.267 on Windows and OS X and after 11.2.202.559 on Linux, Adobe AIR after 20.0.0.233, Adobe AIR SDK after 20.0.0.233, and Adobe AIR SDK & Compiler after 20.0.0.233
Adobe Flash Player are prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will likely result in denial-of-service conditions.