Memory Address Discovery Vulnerability in Adobe Flash Player
CVE-2014-0540

Currently unrated

Key Information:

Vendor: Adobe
Status: Adobe Air Sdk
Vendor: CVE Published:; 12 August 2014

Summary

A vulnerability in Adobe Flash Player and Adobe AIR allows unauthorized access to memory addresses, potentially bypassing the Address Space Layout Randomization (ASLR) security feature. Version limitations exist for various operating systems, including Windows, OS X, and Linux, impacting several releases of Adobe software. This flaw could enable attackers to exploit specific vectors to gain sensitive information, compromising system integrity.

References

http://secunia.com/advisories/60710

third-party-advisoryx_refsource_SECUNIA

http://secunia.com/advisories/60732

third-party-advisoryx_refsource_SECUNIA

http://helpx.adobe.com/security/products/flash-player/aps...

x_refsource_CONFIRM

Timeline

Vulnerability published
Aug 12, 2014
Vulnerability Reserved
Dec 20, 2013