Memory Address Discovery Vulnerability in Adobe Flash Player and Adobe AIR

Memory Address Discovery Vulnerability in Adobe Flash Player and Adobe AIR

CVE-2015-5576 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK & Compiler before 19.0.0.190 do not properly restrict discovery of memory addresses, which allows attackers to bypass the ASLR protection mechanism via unspecified vectors.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.