Arbitrary Code Execution Vulnerability in Adobe Flash Player and Adobe AIR

Arbitrary Code Execution Vulnerability in Adobe Flash Player and Adobe AIR

CVE-2015-7659 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before 19.0.0.241, and Adobe AIR SDK & Compiler before 19.0.0.241 allow attackers to execute arbitrary code by leveraging an unspecified "type confusion" in the NetConnection object implementation.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.