Memory Address Discovery Vulnerability in Adobe Flash Player and AIR
CVE-2014-0542

Currently unrated

Key Information:

Vendor: Adobe
Status: Adobe Air
Vendor: CVE Published:; 12 August 2014

Summary

A security weakness has been identified in Adobe Flash Player and Adobe AIR which hinders the effectiveness of Address Space Layout Randomization (ASLR) by improperly restricting the discovery of memory addresses. This flaw potentially exposes systems running affected versions to attackers who could exploit this weakness, gaining unauthorized access to sensitive information. Various versions on different platforms, including Windows, OS X, and Linux, are impacted. It is crucial for users to update to the latest software versions to safeguard against potential exploits associated with this vulnerability.

References

http://secunia.com/advisories/60710

third-party-advisoryx_refsource_SECUNIA

http://secunia.com/advisories/60732

third-party-advisoryx_refsource_SECUNIA

http://helpx.adobe.com/security/products/flash-player/aps...

x_refsource_CONFIRM

Timeline

Vulnerability published
Aug 12, 2014
Vulnerability Reserved
Dec 20, 2013