Oval Definition:oval:org.cisecurity:def:1251
Revision Date:2016-11-11Version:21
Title:Integer overflow in Adobe Flash Player before 13.0.0.250 and 14.x and 15.x before 15.0.0.189, Adobe AIR before 15.0.0.293, Adobe AIR SDK before 15.0.0.302, and Adobe AIR SDK and Compiler before 15.0.0.302 - CVE-2014-0569
Description:Integer overflow in Adobe Flash Player before 13.0.0.250 and 14.x and 15.x before 15.0.0.189 on Windows and OS X and before 11.2.202.411 on Linux, Adobe AIR before 15.0.0.293, Adobe AIR SDK before 15.0.0.302, and Adobe AIR SDK and Compiler before 15.0.0.302 allows attackers to execute arbitrary code via unspecified vectors.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2014-0569
Platform(s):Microsoft Windows 10
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows 8.1
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows Vista
Microsoft Windows XP
Product(s):ActiveX Control
Adobe AIR
Adobe Flash Player
Pepper Flash
Definition Synopsis
  • Adobe Flash Player
  • Adobe Flash Player is installed
  • AND Adobe Flash Player version
  • Check if Adobe Flash Player (ESR) version is less than 13.0.0.250
  • OR Adobe Flash Player
  • Check if Adobe Flash Player version is less than 15.0.0.189
  • AND Check if Adobe Flash Player version is greater than or equal to 14.0.0.0
  • OR Pepper Flash for Google Chrome version
  • Google Chrome is installed
  • AND Check if Pepper Flash for Google Chrome version is less than 15.0.0.189
  • OR Flash.ocx section
  • ActiveX Control is installed
  • AND Flash.ocx versions section
  • Check if the ESR version of Flash.ocx is less than 13.0.0.250
  • OR ActiveX Control version
  • Check if Flash*.ocx version is less than 15.0.0.189
  • AND Check if Flash*.ocx version is greater than or equal to 14.0.0.0
  • OR Adobe AIR
  • Adobe AIR is installed
  • AND Check if Adobe AIR version is less than 15.0.0.293
    • BACK