Adobe Flash Player and AIR multiple buffer overflow vulnerabilities (APSB15-19)

Adobe Flash Player and AIR multiple buffer overflow vulnerabilities (APSB15-19)
Adobe Flash Player and AIR multiple buffer overflow vulnerabilities (APSB15-19)

Release date:
Updated on:

Affected Systems:

Adobe Flash Player <= 18.0.0.209
Adobe Flash Player <= 13.0.0.309
Adobe Flash Player <= 11.2.202.491

Description:

Bugtraq id: 76284
CVE (CAN) ID: CVE-2015-5131, CVE-2015-5132, CVE-2015-5133

Flash Player is a high-performance, lightweight, and expressive client runtime player. Adobe AIR is a technology developed based on the combination of network and desktop applications. It can control cloud programs on the network without having to use a browser.

Adobe Flash Player and AIR have Multiple Remote Buffer Overflow Vulnerabilities. Attackers can exploit these vulnerabilities to execute arbitrary code or cause DoS in the context of the affected application.

<* Source: Mateusz Jurczyk
Ben Hawkes
Chris Evans,

Link: https://helpx.adobe.com/security/products/flash-player/apsb15-19.html
*>

Suggestion:

Vendor patch:

Adobe
-----
Adobe has released a Security Bulletin (APSB15-19) and patches for this:
APSB15-19: Security updates available for Adobe Flash Player
Link: https://helpx.adobe.com/security/products/flash-player/apsb15-19.html

Patch download: http://www.adobe.com/go/getflash

This article permanently updates the link address: