Address leak vulnerability in Adobe Flash Player and Adobe AIR - CVE-2014-0492| ID: oval:org.secpod.oval:def:16553 | Date: (C)2014-01-21 (M)2022-11-24 |
| Class: VULNERABILITY | Family: windows |
The host is installed with Adobe Flash Player before 11.7.700.260, 11.8.x, 11.9.x before 12.0.0.38 or Adobe AIR before 4.0.0.1390 and is prone to address leak vulnerability. The flaw is present in the applications, which fails to handle the address leak. Successful exploitation allows remote attackers to defeat the ASLR protection mechanism by leveraging an "address leak".
| Platform: |
| Microsoft Windows Server 2016 |
| Microsoft Windows 2000 |
| Microsoft Windows XP |
| Microsoft Windows Vista |
| Microsoft Windows Server 2008 R2 |
| Microsoft Windows Server 2003 |
| Microsoft Windows Server 2008 |
| Microsoft Windows 8 |
| Microsoft Windows Server 2012 |
| Microsoft Windows 7 |
| Microsoft Windows 10 |
| Microsoft Windows 8.1 |
| Microsoft Windows Server 2012 R2 |
| Product: |
| Adobe AIR |
| Adobe Flash Player |
| Microsoft Internet Explorer 10 |
| Microsoft Internet Explorer 11 |
