This site is deprecated. Please
CLICK HERE for latest updates
Short Name |
HTTP:STC:ADOBE:2014-0557-RCE
|
Severity |
Major
|
Recommended |
No
|
Recommended Action |
Drop
|
Category |
HTTP
|
Keywords |
Adobe Flash Player CVE-2014-0557 Memory Leak
|
Release Date |
2014/11/10
|
Update Number |
2439
|
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+
|
HTTP: Adobe Flash Player CVE-2014-0557 Memory Leak
This signature detects an attempt to exploit a known vulnerability against Adobe Flash Player while processing a malformed image file. Successful exploitation could allow an attacker to bypass memory protection and perform ASLR to defeat the code execution protection mechanisms.
Extended Description
Adobe Flash Player before 13.0.0.244 and 14.x and 15.x before 15.0.0.152 on Windows and OS X and before 11.2.202.406 on Linux, Adobe AIR before 15.0.0.249 on Windows and OS X and before 15.0.0.252 on Android, Adobe AIR SDK before 15.0.0.249, and Adobe AIR SDK & Compiler before 15.0.0.249 do not properly restrict discovery of memory addresses, which allows attackers to bypass the ASLR protection mechanism via unspecified vectors.
Affected Products
- Adobe adobe_air 13.0.0.111
- Adobe adobe_air 13.0.0.83
- Adobe adobe_air 14.0.0.110
- Adobe adobe_air 14.0.0.137
- Adobe adobe_air 14.0.0.178
- Adobe adobe_air 14.0.0.179
- Adobe adobe_air_sdk 13.0.0.111
- Adobe adobe_air_sdk 13.0.0.83
- Adobe adobe_air_sdk 14.0.0.110
- Adobe adobe_air_sdk 14.0.0.137
- Adobe adobe_air_sdk 14.0.0.178
- Adobe flash_player 11.2.202.223
- Adobe flash_player 11.2.202.228
- Adobe flash_player 11.2.202.233
- Adobe flash_player 11.2.202.235
- Adobe flash_player 11.2.202.236
- Adobe flash_player 11.2.202.238
- Adobe flash_player 11.2.202.243
- Adobe flash_player 11.2.202.251
- Adobe flash_player 11.2.202.258
- Adobe flash_player 11.2.202.261
- Adobe flash_player 11.2.202.262
- Adobe flash_player 11.2.202.270
- Adobe flash_player 11.2.202.273
- Adobe flash_player 11.2.202.275
- Adobe flash_player 11.2.202.280
- Adobe flash_player 11.2.202.285
- Adobe flash_player 11.2.202.291
- Adobe flash_player 11.2.202.297
- Adobe flash_player 11.2.202.310
- Adobe flash_player 11.2.202.332
- Adobe flash_player 11.2.202.335
- Adobe flash_player 11.2.202.336
- Adobe flash_player 11.2.202.341
- Adobe flash_player 11.2.202.346
- Adobe flash_player 11.2.202.350
- Adobe flash_player 11.2.202.356
- Adobe flash_player 11.2.202.359
- Adobe flash_player 11.2.202.378
- Adobe flash_player 11.2.202.394
- Adobe flash_player 11.2.202.400
- Adobe flash_player 13.0.0.182
- Adobe flash_player 13.0.0.201
- Adobe flash_player 13.0.0.206
- Adobe flash_player 13.0.0.214
- Adobe flash_player 13.0.0.223
- Adobe flash_player 13.0.0.231
- Adobe flash_player 13.0.0.241
- Adobe flash_player 14.0.0.125
- Adobe flash_player 14.0.0.145
- Adobe flash_player 14.0.0.176
- Adobe flash_player 14.0.0.179
- Adobe flash_player 15.0.0.144
References