Access Restriction Bypass in Adobe Flash Player and AIR by Adobe
CVE-2014-0537

Currently unrated

Key Information:

Vendor: Adobe
Status: Adobe Air Sdk
Vendor: CVE Published:; 9 July 2014

Summary

This vulnerability in Adobe Flash Player and Adobe AIR arises from the ability of attackers to bypass intended access restrictions through unspecified vectors. Affected versions include Adobe Flash Player versions prior to 13.0.0.231 and 14.x below 14.0.0.145 on numerous platforms, including Windows, OS X, and Linux, as well as Adobe AIR and its SDK on Android and other systems. Mitigating measures are essential to protect user data and secure application integrity, as exploitation could lead to unauthorized access.

References

http://rhn.redhat.com/errata/RHSA-2014-0860.html

vendor-advisoryx_refsource_REDHAT

http://www.securityfocus.com/bid/68455

vdb-entryx_refsource_BID

http://secunia.com/advisories/59774

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Jul 9, 2014
Vulnerability Reserved
Dec 20, 2013