Arbitrary Code Execution and Memory Corruption Vulnerability in Adobe Flash Player and Adobe AIR

Arbitrary Code Execution and Memory Corruption Vulnerability in Adobe Flash Player and Adobe AIR

CVE-2015-8460 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR SDK before 20.0.0.233, and Adobe AIR SDK & Compiler before 20.0.0.233 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-8459, CVE-2015-8636, and CVE-2015-8645.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.