This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Adobe First view 2007-07-09
Product Adobe Air Last view 2015-01-13
Version Type
Update  
Edition  
Language  
Sofware Edition  
Target Software  
Target Hardware  
Other  

Activity : Overall

COMMON PLATFORM ENUMERATION: Repartition per Version

CPE Name Affected CVE
cpe:2.3:a:adobe:adobe_air:*:*:*:*:*:*:*:* 67
cpe:2.3:a:adobe:adobe_air:1.0:*:*:*:*:*:*:* 66
cpe:2.3:a:adobe:adobe_air:1.0.1:*:*:*:*:*:*:* 66
cpe:2.3:a:adobe:adobe_air:1.5.1:*:*:*:*:*:*:* 65
cpe:2.3:a:adobe:adobe_air:1.5:*:*:*:*:*:*:* 65
cpe:2.3:a:adobe:adobe_air:1.1:*:*:*:*:*:*:* 61
cpe:2.3:a:adobe:adobe_air:-:*:*:*:*:*:*:* 61
cpe:2.3:a:adobe:adobe_air:1.0.8.4990:*:*:*:*:*:*:* 61
cpe:2.3:a:adobe:adobe_air:1.0.4990:*:*:*:*:*:*:* 61
cpe:2.3:a:adobe:adobe_air:1.5.2:*:*:*:*:*:*:* 60
cpe:2.3:a:adobe:adobe_air:1.5.0.7220:*:*:*:*:*:*:* 60
cpe:2.3:a:adobe:adobe_air:1.1.0.5790:*:*:*:*:*:*:* 60
cpe:2.3:a:adobe:adobe_air:1.5.1.8210:*:*:*:*:*:*:* 60
cpe:2.3:a:adobe:adobe_air:1.5.3.9120:*:*:*:*:*:*:* 58
cpe:2.3:a:adobe:adobe_air:1.5.3:*:*:*:*:*:*:* 58
cpe:2.3:a:adobe:adobe_air:2.6.0.19120:*:*:*:*:*:*:* 51
cpe:2.3:a:adobe:adobe_air:2.0.4:*:*:*:*:*:*:* 51
cpe:2.3:a:adobe:adobe_air:2.6:*:*:*:*:*:*:* 51
cpe:2.3:a:adobe:adobe_air:2.0.2:*:*:*:*:*:*:* 51
cpe:2.3:a:adobe:adobe_air:2.0.3.13070:*:*:*:*:*:*:* 51
cpe:2.3:a:adobe:adobe_air:2.5.0.16600:*:*:*:*:*:*:* 51
cpe:2.3:a:adobe:adobe_air:2.0.2.12610:*:*:*:*:*:*:* 51
cpe:2.3:a:adobe:adobe_air:1.5.3.9130:*:*:*:*:*:*:* 51
cpe:2.3:a:adobe:adobe_air:2.7:*:*:*:*:*:*:* 51
cpe:2.3:a:adobe:adobe_air:2.5.1.17730:*:*:*:*:*:*:* 51
cpe:2.3:a:adobe:adobe_air:2.0.3:*:*:*:*:*:*:* 51
cpe:2.3:a:adobe:adobe_air:2.6.0.19140:*:*:*:*:*:*:* 51
cpe:2.3:a:adobe:adobe_air:2.7.0.1948:*:*:*:*:*:*:* 38
cpe:2.3:a:adobe:adobe_air:2.7.0.19480:*:*:*:*:*:*:* 38
cpe:2.3:a:adobe:adobe_air:2.7.1:*:*:*:*:*:*:* 38
cpe:2.3:a:adobe:adobe_air:2.7.0.1953:*:*:*:*:*:*:* 38
cpe:2.3:a:adobe:adobe_air:2.7.0.19530:*:*:*:*:*:*:* 38
cpe:2.3:a:adobe:adobe_air:2.7.1.19610:*:*:*:*:*:*:* 37
cpe:2.3:a:adobe:adobe_air:3.1.0.488:*:*:*:*:*:*:* 37
cpe:2.3:a:adobe:adobe_air:3.0.0.408:*:*:*:*:*:*:* 37
cpe:2.3:a:adobe:adobe_air:3.1.0.485:*:*:*:*:*:*:* 37
cpe:2.3:a:adobe:adobe_air:3.0.0.4080:*:*:*:*:*:*:* 37
cpe:2.3:a:adobe:adobe_air:3.2.0.207:*:*:*:*:*:*:* 36
cpe:2.3:a:adobe:adobe_air:3.3.0.3670:*:*:*:*:*:*:* 36
cpe:2.3:a:adobe:adobe_air:3.1.0.4880:*:*:*:*:*:*:* 36
cpe:2.3:a:adobe:adobe_air:3.2.0.2070:*:*:*:*:*:*:* 36
cpe:2.3:a:adobe:adobe_air:3.4.0.2540:*:*:*:*:*:*:* 35
cpe:2.3:a:adobe:adobe_air:3.5.0.600:*:*:*:*:*:*:* 35
cpe:2.3:a:adobe:adobe_air:3.5.0.880:*:*:*:*:*:*:* 35
cpe:2.3:a:adobe:adobe_air:3.5.0.890:*:*:*:*:*:*:* 35
cpe:2.3:a:adobe:adobe_air:3.4.0.2710:*:*:*:*:*:*:* 35
cpe:2.3:a:adobe:adobe_air:3.5.0.1060:*:*:*:*:*:*:* 35
cpe:2.3:a:adobe:adobe_air:3.6.0.597:*:*:*:*:*:*:* 35
cpe:2.3:a:adobe:adobe_air:3.6.0.6090:*:*:*:*:*:*:* 35
cpe:2.3:a:adobe:adobe_air:3.7.0.1530:*:*:*:*:*:*:* 34

Related : CVE

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
  Date Alert Description
10 2015-01-13 CVE-2015-0309

Heap-based buffer overflow in Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SDK before 16.0.0.272, and Adobe AIR SDK & Compiler before 16.0.0.272 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-0304.

10 2015-01-13 CVE-2015-0308

Use-after-free vulnerability in Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SDK before 16.0.0.272, and Adobe AIR SDK & Compiler before 16.0.0.272 allows attackers to execute arbitrary code via unspecified vectors.

8.5 2015-01-13 CVE-2015-0307

Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SDK before 16.0.0.272, and Adobe AIR SDK & Compiler before 16.0.0.272 allow remote attackers to obtain sensitive information from process memory or cause a denial of service (out-of-bounds read) via unspecified vectors.

10 2015-01-13 CVE-2015-0306

Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SDK before 16.0.0.272, and Adobe AIR SDK & Compiler before 16.0.0.272 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-0303.

9.3 2015-01-13 CVE-2015-0305

Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SDK before 16.0.0.272, and Adobe AIR SDK & Compiler before 16.0.0.272 allow attackers to execute arbitrary code by leveraging an unspecified "type confusion."

10 2015-01-13 CVE-2015-0304

Heap-based buffer overflow in Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SDK before 16.0.0.272, and Adobe AIR SDK & Compiler before 16.0.0.272 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-0309.

10 2015-01-13 CVE-2015-0303

Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SDK before 16.0.0.272, and Adobe AIR SDK & Compiler before 16.0.0.272 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-0306.

5 2015-01-13 CVE-2015-0302

Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SDK before 16.0.0.272, and Adobe AIR SDK & Compiler before 16.0.0.272 allow attackers to obtain sensitive keystroke information via unspecified vectors.

10 2015-01-13 CVE-2015-0301

Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SDK before 16.0.0.272, and Adobe AIR SDK & Compiler before 16.0.0.272 do not properly validate files, which has unspecified impact and attack vectors.

10 2014-10-15 CVE-2014-0558

Adobe Flash Player before 13.0.0.250 and 14.x and 15.x before 15.0.0.189 on Windows and OS X and before 11.2.202.411 on Linux, Adobe AIR before 15.0.0.293, Adobe AIR SDK before 15.0.0.302, and Adobe AIR SDK & Compiler before 15.0.0.302 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0564.

10 2014-09-10 CVE-2014-0554

Adobe Flash Player before 13.0.0.244 and 14.x and 15.x before 15.0.0.152 on Windows and OS X and before 11.2.202.406 on Linux, Adobe AIR before 15.0.0.249 on Windows and OS X and before 15.0.0.252 on Android, Adobe AIR SDK before 15.0.0.249, and Adobe AIR SDK & Compiler before 15.0.0.249 allow attackers to bypass intended access restrictions via unspecified vectors.

10 2014-09-09 CVE-2014-0559

Heap-based buffer overflow in Adobe Flash Player before 13.0.0.244 and 14.x and 15.x before 15.0.0.152 on Windows and OS X and before 11.2.202.406 on Linux, Adobe AIR before 15.0.0.249 on Windows and OS X and before 15.0.0.252 on Android, Adobe AIR SDK before 15.0.0.249, and Adobe AIR SDK & Compiler before 15.0.0.249 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-0556.

10 2014-09-09 CVE-2014-0557

Adobe Flash Player before 13.0.0.244 and 14.x and 15.x before 15.0.0.152 on Windows and OS X and before 11.2.202.406 on Linux, Adobe AIR before 15.0.0.249 on Windows and OS X and before 15.0.0.252 on Android, Adobe AIR SDK before 15.0.0.249, and Adobe AIR SDK & Compiler before 15.0.0.249 do not properly restrict discovery of memory addresses, which allows attackers to bypass the ASLR protection mechanism via unspecified vectors.

10 2014-09-09 CVE-2014-0556

Heap-based buffer overflow in Adobe Flash Player before 13.0.0.244 and 14.x and 15.x before 15.0.0.152 on Windows and OS X and before 11.2.202.406 on Linux, Adobe AIR before 15.0.0.249 on Windows and OS X and before 15.0.0.252 on Android, Adobe AIR SDK before 15.0.0.249, and Adobe AIR SDK & Compiler before 15.0.0.249 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-0559.

10 2014-09-09 CVE-2014-0555

Adobe Flash Player before 13.0.0.244 and 14.x and 15.x before 15.0.0.152 on Windows and OS X and before 11.2.202.406 on Linux, Adobe AIR before 15.0.0.249 on Windows and OS X and before 15.0.0.252 on Android, Adobe AIR SDK before 15.0.0.249, and Adobe AIR SDK & Compiler before 15.0.0.249 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0547, CVE-2014-0549, CVE-2014-0550, CVE-2014-0551, and CVE-2014-0552.

10 2014-09-09 CVE-2014-0552

Adobe Flash Player before 13.0.0.244 and 14.x and 15.x before 15.0.0.152 on Windows and OS X and before 11.2.202.406 on Linux, Adobe AIR before 15.0.0.249 on Windows and OS X and before 15.0.0.252 on Android, Adobe AIR SDK before 15.0.0.249, and Adobe AIR SDK & Compiler before 15.0.0.249 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0547, CVE-2014-0549, CVE-2014-0550, CVE-2014-0551, and CVE-2014-0555.

10 2014-09-09 CVE-2014-0551

Adobe Flash Player before 13.0.0.244 and 14.x and 15.x before 15.0.0.152 on Windows and OS X and before 11.2.202.406 on Linux, Adobe AIR before 15.0.0.249 on Windows and OS X and before 15.0.0.252 on Android, Adobe AIR SDK before 15.0.0.249, and Adobe AIR SDK & Compiler before 15.0.0.249 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0547, CVE-2014-0549, CVE-2014-0550, CVE-2014-0552, and CVE-2014-0555.

10 2014-09-09 CVE-2014-0550

Adobe Flash Player before 13.0.0.244 and 14.x and 15.x before 15.0.0.152 on Windows and OS X and before 11.2.202.406 on Linux, Adobe AIR before 15.0.0.249 on Windows and OS X and before 15.0.0.252 on Android, Adobe AIR SDK before 15.0.0.249, and Adobe AIR SDK & Compiler before 15.0.0.249 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0547, CVE-2014-0549, CVE-2014-0551, CVE-2014-0552, and CVE-2014-0555.

10 2014-09-09 CVE-2014-0549

Adobe Flash Player before 13.0.0.244 and 14.x and 15.x before 15.0.0.152 on Windows and OS X and before 11.2.202.406 on Linux, Adobe AIR before 15.0.0.249 on Windows and OS X and before 15.0.0.252 on Android, Adobe AIR SDK before 15.0.0.249, and Adobe AIR SDK & Compiler before 15.0.0.249 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0547, CVE-2014-0550, CVE-2014-0551, CVE-2014-0552, and CVE-2014-0555.

7.5 2014-09-09 CVE-2014-0548

Adobe Flash Player before 13.0.0.244 and 14.x and 15.x before 15.0.0.152 on Windows and OS X and before 11.2.202.406 on Linux, Adobe AIR before 15.0.0.249 on Windows and OS X and before 15.0.0.252 on Android, Adobe AIR SDK before 15.0.0.249, and Adobe AIR SDK & Compiler before 15.0.0.249 allow remote attackers to bypass the Same Origin Policy via unspecified vectors.

10 2014-09-09 CVE-2014-0547

Adobe Flash Player before 13.0.0.244 and 14.x and 15.x before 15.0.0.152 on Windows and OS X and before 11.2.202.406 on Linux, Adobe AIR before 15.0.0.249 on Windows and OS X and before 15.0.0.252 on Android, Adobe AIR SDK before 15.0.0.249, and Adobe AIR SDK & Compiler before 15.0.0.249 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0549, CVE-2014-0550, CVE-2014-0551, CVE-2014-0552, and CVE-2014-0555.

4.3 2014-08-19 CVE-2014-5333

Adobe Flash Player before 13.0.0.241 and 14.x before 14.0.0.176 on Windows and OS X and before 11.2.202.400 on Linux, Adobe AIR before 14.0.0.178 on Windows and OS X and before 14.0.0.179 on Android, Adobe AIR SDK before 14.0.0.178, and Adobe AIR SDK & Compiler before 14.0.0.178 do not properly restrict the SWF file format, which allows remote attackers to conduct cross-site request forgery (CSRF) attacks against JSONP endpoints, and obtain sensitive information, via a crafted OBJECT element with SWF content satisfying the character-set requirements of a callback API, in conjunction with a manipulation involving a '$' (dollar sign) or '(' (open parenthesis) character. NOTE: this issue exists because of an incomplete fix for CVE-2014-4671.

10 2014-08-12 CVE-2014-0545

Adobe Flash Player before 13.0.0.241 and 14.x before 14.0.0.176 on Windows and OS X and before 11.2.202.400 on Linux, Adobe AIR before 14.0.0.178 on Windows and OS X and before 14.0.0.179 on Android, Adobe AIR SDK before 14.0.0.178, and Adobe AIR SDK & Compiler before 14.0.0.178 do not properly restrict discovery of memory addresses, which allows attackers to bypass the ASLR protection mechanism via unspecified vectors, a different vulnerability than CVE-2014-0540, CVE-2014-0542, CVE-2014-0543, and CVE-2014-0544.

10 2014-08-12 CVE-2014-0544

Adobe Flash Player before 13.0.0.241 and 14.x before 14.0.0.176 on Windows and OS X and before 11.2.202.400 on Linux, Adobe AIR before 14.0.0.178 on Windows and OS X and before 14.0.0.179 on Android, Adobe AIR SDK before 14.0.0.178, and Adobe AIR SDK & Compiler before 14.0.0.178 do not properly restrict discovery of memory addresses, which allows attackers to bypass the ASLR protection mechanism via unspecified vectors, a different vulnerability than CVE-2014-0540, CVE-2014-0542, CVE-2014-0543, and CVE-2014-0545.

10 2014-08-12 CVE-2014-0543

Adobe Flash Player before 13.0.0.241 and 14.x before 14.0.0.176 on Windows and OS X and before 11.2.202.400 on Linux, Adobe AIR before 14.0.0.178 on Windows and OS X and before 14.0.0.179 on Android, Adobe AIR SDK before 14.0.0.178, and Adobe AIR SDK & Compiler before 14.0.0.178 do not properly restrict discovery of memory addresses, which allows attackers to bypass the ASLR protection mechanism via unspecified vectors, a different vulnerability than CVE-2014-0540, CVE-2014-0542, CVE-2014-0544, and CVE-2014-0545.

CWE : Common Weakness Enumeration

%idName
43% (24) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer
21% (12) CWE-264 Permissions, Privileges, and Access Controls
14% (8) CWE-94 Failure to Control Generation of Code ('Code Injection')
7% (4) CWE-189 Numeric Errors
3% (2) CWE-399 Resource Management Errors
3% (2) CWE-79 Failure to Preserve Web Page Structure ('Cross-site Scripting')
1% (1) CWE-352 Cross-Site Request Forgery (CSRF)
1% (1) CWE-200 Information Exposure
1% (1) CWE-20 Improper Input Validation

Oval Markup Language : Definitions

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalID Name
oval:org.mitre.oval:def:8686 Multiple Security Vulnerabilities in the Adobe Flash Player for Solaris May L...
oval:org.mitre.oval:def:7465 Adobe Flash Player and AIR JPEG File Parsing Heap Buffer Overflow Vulnerability
oval:org.mitre.oval:def:15948 Adobe Flash Player and AIR JPEG File Parsing Heap Buffer Overflow Vulnerability
oval:org.mitre.oval:def:7763 Multiple Security Vulnerabilities in the Adobe Flash Player for Solaris May L...
oval:org.mitre.oval:def:7460 Adobe Flash Player and AIR Data Injection Remote Code Execution Vulnerability
oval:org.mitre.oval:def:16216 Adobe Flash Player and AIR Data Injection Remote Code Execution Vulnerability
oval:org.mitre.oval:def:8350 Multiple Security Vulnerabilities in the Adobe Flash Player for Solaris May L...
oval:org.mitre.oval:def:7140 Adobe Flash Player and AIR Unspecified Memory Corruption Vulnerability
oval:org.mitre.oval:def:15795 Adobe Flash Player and AIR Unspecified Memory Corruption Vulnerability
oval:org.mitre.oval:def:7902 Multiple Security Vulnerabilities in the Adobe Flash Player for Solaris May L...
oval:org.mitre.oval:def:6899 Adobe Flash Player and AIR Unspecified Memory Corruption Vulnerability
oval:org.mitre.oval:def:16340 Adobe Flash Player and AIR Unspecified Memory Corruption Vulnerability
oval:org.mitre.oval:def:8208 Multiple Security Vulnerabilities in the Adobe Flash Player for Solaris May L...
oval:org.mitre.oval:def:7191 Adobe Flash Player and AIR 'exception_count' Integer Overflow Vulnerability
oval:org.mitre.oval:def:16315 Adobe Flash Player and AIR 'exception_count' Integer Overflow Vulnerability
oval:org.mitre.oval:def:8613 Multiple Security Vulnerabilities in the Adobe Flash Player for Solaris May L...
oval:org.mitre.oval:def:6972 Adobe Flash Player and AIR Multiple Unspecified Remote Code Execution Vulnera...
oval:org.mitre.oval:def:16054 Adobe Flash Player and AIR Multiple Unspecified Remote Code Execution Vulnera...
oval:org.mitre.oval:def:22670 ELSA-2009:1657: flash-plugin security update (Critical)
oval:org.mitre.oval:def:6663 Adobe Flash Player ActiveX Control Information Disclosure Vulnerability
oval:org.mitre.oval:def:8518 Adobe Flash Player, Acrobat, Adobe Reader and AIR Cross Domain Request Vulner...
oval:org.mitre.oval:def:8393 Adobe Flash Player and AIR Denial of Service Vulnerability
oval:org.mitre.oval:def:21893 RHSA-2010:0102: flash-plugin security update (Important)
oval:org.mitre.oval:def:16125 Adobe Flash Player and AIR Denial of Service Vulnerability
oval:org.mitre.oval:def:23015 ELSA-2010:0102: flash-plugin security update (Important)

SAINT Exploits

Description Link
Adobe Flash Player MP4 Sequence Parameter Set Processing More info here

Open Source Vulnerability Database (OSVDB)

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
75201 Adobe Flash Player SWF File Handling Arbitrary Code Execution (400 Taviso Bugs)
74444 Adobe Flash Player Unspecified Memory Corruption (2011-2425)
74443 Adobe Flash Player Unspecified Memory Corruption (2011-2417)
74442 Adobe Flash Player Unspecified Overflow (2011-2416)
74441 Adobe Flash Player Unspecified Overflow (2011-2415)
74440 Adobe Flash Player Unspecified Overflow (2011-2414)
74439 Adobe Flash Player Unspecified Memory Corruption (2011-2140)
74438 Adobe Flash Player Unspecified Cross-domain Information Disclosure
74437 Adobe Flash Player BitmapData.scroll Handling Remote Overflow
74436 Adobe Flash Player Unspecified Overflow (2011-2137)
74435 Adobe Flash Player Unspecified Overflow (2011-2136)
74434 Adobe Flash Player flash.display Memory Corruption
74433 Adobe Flash Player Unspecified Overflow (2011-2134)
74432 Adobe Flash Player Unspecified Overflow (2011-2130)
67062 Adobe Flash Player Unspecified Memory Corruption (2010-2213)
67061 Adobe Flash Player Unspecified Memory Corruption (2010-2214)
67060 Adobe Flash Player Unspecified Clickjacking (2010-2215)
67059 Adobe Flash Player Multiple Unspecified Memory Corruption (2010-2216)
67057 Adobe Flash Player ActionScript AVM1 ActionPush Command Arbitrary Code Execution
62370 Adobe Flash Player / AIR Crafted SWF File DoS
62300 Adobe Flash Player Cross-domain Sandbox Restriction Bypass
60891 Adobe Flash Player ActiveX on Windows Unspecified Arbitrary File Access
60890 Adobe Flash Player / AIR Multiple Unspecified Arbitrary Code Execution
60889 Adobe Flash Player / AIR ActionScript Exception Handler Verifier::parseExcept...
60888 Adobe Flash Player / AIR Class.Switch Memory Corruption (2009-3798)

ExploitDB Exploits

id Description
18479 Adobe Flash Player MP4 SequenceParameterSetNALUnit Buffer Overflow
18437 Adobe Flash Player MP4 SequenceParameterSetNALUnit Remote Code Execution Exploit

OpenVAS Exploits

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2012-09-03 Name : Adobe Flash Player Multiple Vulnerabilities - Sep12 (Linux)
File : nvt/gb_adobe_flash_player_mult_vuln_sep12_lin.nasl
2012-08-24 Name : Adobe Flash Player Multiple Vulnerabilities -01 August 12 (Windows)
File : nvt/gb_adobe_prdts_mult_vuln01_aug12_win.nasl
2012-08-24 Name : Adobe Flash Player Multiple Vulnerabilities -01 August 12 (Mac OS X)
File : nvt/gb_adobe_prdts_mult_vuln01_aug12_macosx.nasl
2012-04-30 Name : FreeBSD Ports: linux-f10-flashplugin
File : nvt/freebsd_linux-f10-flashplugin2.nasl
2012-03-30 Name : Adobe Flash Player Code Execution and DoS Vulnerabilities (Windows)
File : nvt/secpod_adobe_prdts_code_exec_n_dos_vuln_win.nasl
2012-03-30 Name : Adobe Flash Player Code Execution and DoS Vulnerabilities (MAC OS X)
File : nvt/secpod_adobe_prdts_code_exec_n_dos_vuln_macosx.nasl
2012-03-30 Name : Adobe Flash Player Code Execution and DoS Vulnerabilities (Linux)
File : nvt/secpod_adobe_flash_player_code_exec_n_dos_vuln_lin.nasl
2012-02-12 Name : Gentoo Security Advisory GLSA 201201-19 (acroread)
File : nvt/glsa_201201_19.nasl
2012-02-12 Name : Gentoo Security Advisory GLSA 201110-11 (Adobe Flash Player)
File : nvt/glsa_201110_11.nasl
2011-09-21 Name : FreeBSD Ports: linux-flashplugin
File : nvt/freebsd_linux-flashplugin18.nasl
2011-09-07 Name : Mac OS X v10.6.4 Multiple Vulnerabilities (2010-007)
File : nvt/gb_macosx_su10-007.nasl
2011-08-31 Name : Adobe Air and Flash Player Multiple Vulnerabilities (Mac OS X)
File : nvt/secpod_adobe_prdts_mult_vuln_macosx.nasl
2011-08-31 Name : Adobe Flash Player Multiple Vulnerabilities August-2011 (Linux)
File : nvt/secpod_adobe_flash_player_mult_vuln_aug11_lin.nasl
2011-08-31 Name : Adobe Air and Flash Player Multiple Vulnerabilities August-2011 (Windows)
File : nvt/secpod_adobe_prdts_mult_vuln_aug11_win.nasl
2011-03-09 Name : Gentoo Security Advisory GLSA 201101-09 (adobe-flash)
File : nvt/glsa_201101_09.nasl
2011-03-09 Name : Gentoo Security Advisory GLSA 201009-05 (acroread)
File : nvt/glsa_201009_05.nasl
2010-09-10 Name : SuSE Update for acroread SUSE-SA:2010:037
File : nvt/gb_suse_2010_037.nasl
2010-08-21 Name : FreeBSD Ports: linux-flashplugin
File : nvt/freebsd_linux-flashplugin9.nasl
2010-08-16 Name : SuSE Update for flash-player SUSE-SA:2010:034
File : nvt/gb_suse_2010_034.nasl
2010-08-16 Name : Adobe Flash Player/Air Multiple Vulnerabilities - August10 (Win)
File : nvt/gb_adobe_prdts_mult_dos_vuln_aug10_win.nasl
2010-08-16 Name : Adobe Flash Player/Air Multiple Vulnerabilities - August10 (Linux)
File : nvt/gb_adobe_prdts_mult_dos_vuln_aug10_lin.nasl
2010-04-06 Name : Mac OS X Security Update 2010-001
File : nvt/macosx_secupd_2010-001.nasl
2010-02-26 Name : Adobe Acrobat and Reader PDF Handling Code Execution Vulnerability (Linux)
File : nvt/secpod_adobe_prdts_code_exec_vuln_feb10_lin.nasl
2010-02-26 Name : Adobe Acrobat and Reader PDF Handling Code Execution Vulnerability (Windows)
File : nvt/secpod_adobe_prdts_code_exec_vuln_feb10_win.nasl
2010-02-19 Name : Adobe Flash Player/Air Multiple Vulnerabilities -feb10 (Win)
File : nvt/gb_adobe_prdts_mult_vuln_feb10_win.nasl

Information Assurance Vulnerability Management (IAVM)

id Description
2014-A-0093 Multiple Vulnerabilities in Adobe Flash Player and AIR
Severity: Category I - VMSKEY: V0052949
2014-A-0078 Multiple Vulnerabilities in Adobe Flash Player and AIR
Severity: Category I - VMSKEY: V0052485
2014-A-0047 Multiple Vulnerabilities in Adobe Flash Player and AIR
Severity: Category I - VMSKEY: V0048681
2012-B-0048 Multiple Vulnerabilities in HP Systems Insight Manager
Severity: Category I - VMSKEY: V0032178

Snort® IPS/IDS

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
Date Description
2018-01-18 Adobe Flash memory corruption exploit attempt
RuleID : 45225 - Type : FILE-FLASH - Revision : 2
2018-01-18 Adobe Flash memory corruption exploit attempt
RuleID : 45224 - Type : FILE-FLASH - Revision : 2
2017-03-02 Adobe Flash Player broker arbitrary file write attempt
RuleID : 41473 - Type : FILE-FLASH - Revision : 2
2017-03-02 Adobe Flash Player broker arbitrary file write attempt
RuleID : 41472 - Type : FILE-FLASH - Revision : 2
2016-03-22 Adobe Flash copyPixelsToByteArray integer overflow attempt
RuleID : 37711 - Type : FILE-FLASH - Revision : 3
2016-03-22 Adobe Flash copyPixelsToByteArray integer overflow attempt
RuleID : 37710 - Type : FILE-FLASH - Revision : 2
2016-03-22 Adobe Flash copyPixelsToByteArray integer overflow attempt
RuleID : 37709 - Type : FILE-FLASH - Revision : 1
2016-03-22 Adobe Flash copyPixelsToByteArray integer overflow attempt
RuleID : 37708 - Type : FILE-FLASH - Revision : 1
2016-03-15 Adobe Flash copyPixelsToByteArray integer overflow attempt
RuleID : 37645 - Type : FILE-FLASH - Revision : 2
2016-03-15 Adobe Flash copyPixelsToByteArray integer overflow attempt
RuleID : 37644 - Type : FILE-FLASH - Revision : 1
2016-03-14 Adobe Flash copyPixelsToByteArray integer overflow attempt
RuleID : 36177 - Type : FILE-FLASH - Revision : 2
2016-03-14 Adobe Flash copyPixelsToByteArray integer overflow attempt
RuleID : 36176 - Type : FILE-FLASH - Revision : 2
2016-03-14 Adobe Flash copyPixelsToByteArray integer overflow attempt
RuleID : 36175 - Type : FILE-FLASH - Revision : 2
2016-03-14 Adobe Flash copyPixelsToByteArray integer overflow attempt
RuleID : 36174 - Type : FILE-FLASH - Revision : 3
2016-03-14 Adobe Flash copyPixelsToByteArray integer overflow attempt
RuleID : 36173 - Type : FILE-FLASH - Revision : 2
2016-03-14 Adobe Flash copyPixelsToByteArray integer overflow attempt
RuleID : 36172 - Type : FILE-FLASH - Revision : 2
2016-03-14 Adobe Flash copyPixelsToByteArray integer overflow attempt
RuleID : 36171 - Type : FILE-FLASH - Revision : 2
2016-03-14 Adobe Flash copyPixelsToByteArray integer overflow attempt
RuleID : 36170 - Type : FILE-FLASH - Revision : 2
2016-03-14 Adobe Flash copyPixelsToByteArray integer overflow attempt
RuleID : 36169 - Type : FILE-FLASH - Revision : 2
2016-03-14 Adobe Flash copyPixelsToByteArray integer overflow attempt
RuleID : 36168 - Type : FILE-FLASH - Revision : 3
2016-03-14 Adobe Flash copyPixelsToByteArray integer overflow attempt
RuleID : 36167 - Type : FILE-FLASH - Revision : 3
2016-03-14 Adobe Flash copyPixelsToByteArray integer overflow attempt
RuleID : 36166 - Type : FILE-FLASH - Revision : 3
2016-03-14 Adobe Flash copyPixelsToByteArray integer overflow attempt
RuleID : 36165 - Type : FILE-FLASH - Revision : 4
2016-03-14 Adobe Flash copyPixelsToByteArray integer overflow attempt
RuleID : 36164 - Type : FILE-FLASH - Revision : 3
2016-03-14 Adobe Flash copyPixelsToByteArray integer overflow attempt
RuleID : 36163 - Type : FILE-FLASH - Revision : 2

Nessus® Vulnerability Scanner

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2015-06-16 Name: The remote SUSE host is missing one or more security updates.
File: suse_SU-2015-1064-1.nasl - Type: ACT_GATHER_INFO
2015-06-12 Name: The remote Windows host has a version of Adobe AIR installed that is affected...
File: adobe_air_apsb15-11.nasl - Type: ACT_GATHER_INFO
2015-06-12 Name: The remote FreeBSD host is missing one or more security-related updates.
File: freebsd_pkg_1e63db88105011e5a4dfc485083ca99c.nasl - Type: ACT_GATHER_INFO
2015-06-12 Name: The remote Mac OS X host has a version of Adobe AIR installed that is affecte...
File: macosx_adobe_air_apsb15-11.nasl - Type: ACT_GATHER_INFO
2015-06-12 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2015-412.nasl - Type: ACT_GATHER_INFO
2015-06-12 Name: The remote SUSE host is missing one or more security updates.
File: suse_SU-2015-1043-1.nasl - Type: ACT_GATHER_INFO
2015-06-09 Name: The remote Windows host has a browser plugin installed that is affected by mu...
File: flash_player_apsb15-11.nasl - Type: ACT_GATHER_INFO
2015-06-09 Name: The remote Windows host contains a web browser that is affected by multiple v...
File: google_chrome_43_0_2357_124.nasl - Type: ACT_GATHER_INFO
2015-06-09 Name: The remote Mac OS X host has a browser plugin installed that is affected by m...
File: macosx_flash_player_apsb15-11.nasl - Type: ACT_GATHER_INFO
2015-06-09 Name: The remote Mac OS X host contains a web browser that is affected by multiple ...
File: macosx_google_chrome_43_0_2357_124.nasl - Type: ACT_GATHER_INFO
2015-06-09 Name: The remote Windows host has a browser plugin installed that is affected by mu...
File: smb_kb3065820.nasl - Type: ACT_GATHER_INFO
2015-03-24 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-201406-17.nasl - Type: ACT_GATHER_INFO
2015-02-09 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-201502-02.nasl - Type: ACT_GATHER_INFO
2015-01-30 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2015-81.nasl - Type: ACT_GATHER_INFO
2015-01-23 Name: The remote FreeBSD host is missing one or more security-related updates.
File: freebsd_pkg_cc294a2ca23211e48e9f0011d823eebd.nasl - Type: ACT_GATHER_INFO
2015-01-19 Name: The remote Solaris system is missing a security patch for third-party software.
File: solaris11_flash_20120523.nasl - Type: ACT_GATHER_INFO
2015-01-16 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2015-30.nasl - Type: ACT_GATHER_INFO
2015-01-16 Name: The remote SuSE 11 host is missing one or more security updates.
File: suse_11_flash-player-150114.nasl - Type: ACT_GATHER_INFO
2015-01-15 Name: The remote Red Hat host is missing a security update.
File: redhat-RHSA-2015-0052.nasl - Type: ACT_GATHER_INFO
2015-01-13 Name: The remote Windows host contains a version of Adobe AIR that is affected by m...
File: adobe_air_apsb15-01.nasl - Type: ACT_GATHER_INFO
2015-01-13 Name: The remote Windows host has a browser plugin that is affected by multiple vul...
File: flash_player_apsb15-01.nasl - Type: ACT_GATHER_INFO
2015-01-13 Name: The remote Windows host contains a web browser that is affected by multiple v...
File: google_chrome_39_0_2171_99.nasl - Type: ACT_GATHER_INFO
2015-01-13 Name: The remote Mac OS X host contains a version of Adobe AIR that is affected by ...
File: macosx_adobe_air_16_0_0_245.nasl - Type: ACT_GATHER_INFO
2015-01-13 Name: The remote Mac OS X host has a browser plugin that is affected by multiple vu...
File: macosx_flash_player_16_0_0_257.nasl - Type: ACT_GATHER_INFO
2015-01-13 Name: The remote Mac OS X host contains a web browser that is affected by multiple ...
File: macosx_google_chrome_39_0_2171_99.nasl - Type: ACT_GATHER_INFO