Adobe Flash Player and AIR Memory Corruption Vulnerability (CVE-2015-5124)
Adobe Flash Player and AIR Memory Corruption Vulnerability (CVE-2015-5124)
Release date:
Updated on:
Affected Systems:
Adobe Flash Player <18.0.0.203
Adobe Flash Player <13.0.0.302
Adobe Flash Player <11.2.202.481
Adobe Flash Player 18.x
Adobe Flash Player 14.x
Description:
Bugtraq id: 75959
CVE (CAN) ID: CVE-2015-5124
Adobe Flash Player is an integrated multimedia Player. Adobe AIR is a technology developed based on the combination of network and desktop applications. It can control cloud programs on the network without having to use a browser.
Adobe Flash Player/AIR has a security vulnerability. Attackers can exploit this vulnerability to execute arbitrary code or cause DoS (Memory Corruption ).
<* Source: Kai Kang
Link: https://helpx.adobe.com/security/products/flash-player/apsb15-16.html
*>
Suggestion:
Vendor patch:
Adobe
-----
Adobe has released a Security Bulletin (apsb15-16) and patches for this:
Apsb15-16: Security updates available for Adobe Flash Player
Link: https://helpx.adobe.com/security/products/flash-player/apsb15-16.html
This article permanently updates the link address: