Stack-based Buffer Overflow in Adobe Flash Player and AIR Applications
CVE-2015-8457

Currently unrated

Key Information:

Vendor: Adobe
Status: Air Sdk; Air Sdk \& Compiler
Vendor: CVE Published:; 10 December 2015

What is CVE-2015-8457?

A stack-based buffer overflow occurs in Adobe Flash Player and Adobe AIR applications, allowing attackers to execute arbitrary code through unspecified vectors. This vulnerability affects multiple versions of Flash Player on Windows, OS X, and Linux, as well as various versions of Adobe AIR and its SDKs. Exploitation of this vulnerability can lead to severe security risks, making it crucial for users to update to the latest versions to mitigate potential threats.

References

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/do...

x_refsource_CONFIRM

https://helpx.adobe.com/security/products/flash-player/ap...

x_refsource_CONFIRM

http://www.zerodayinitiative.com/advisories/ZDI-15-636

x_refsource_MISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 10, 2015
Vulnerability Reserved
Dec 2, 2015