Уязвимость CVE-2014-0585: Информация

Описание

Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and OS X and before 11.2.202.418 on Linux, Adobe AIR before 15.0.0.356, Adobe AIR SDK before 15.0.0.356, and Adobe AIR SDK & Compiler before 15.0.0.356 allow attackers to execute arbitrary code by leveraging an unspecified "type confusion," a different vulnerability than CVE-2014-0577, CVE-2014-0584, CVE-2014-0586, and CVE-2014-0590.

Важность: CRITICAL (10,0)

Исправленные пакеты

Ссылки на рекомендации, решения и инструменты

1. Подверженные конфигурации:

   1. Конфигурация 1

      cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*

      ---

      Конфигурация 2

      cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

      ---

      Конфигурация 3

      cpe:2.3:a:adobe:air_sdk:*:*:*:*:*:*:*:*

      End including

      15.0.0.356

      ---

      Конфигурация 4

      cpe:2.3:a:adobe:air:*:*:*:*:*:*:*:*

      End including

      15.0.0.356

      ---

      Конфигурация 5

      cpe:2.3:a:adobe:air_sdk_\&_compiler:*:*:*:*:*:*:*:*

      End excliding

      15.0.0.356

      ---