Oval Definition:oval:org.mitre.oval:def:25856
Revision Date:2015-08-03Version:39
Title:Use-after-free vulnerability in Adobe Flash Player before 13.0.0.241 and 14.x before 14.0.0.176 on Windows, Adobe AIR before 14.0.0.178 on Windows allows attackers to execute arbitrary code
Description:Adobe Reader and Acrobat 10.x before 10.1.11 and 11.x before 11.0.08 on Windows allow attackers to bypass a sandbox protection mechanism, and consequently execute native code in a privileged context, via unspecified vectors.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2014-0546
Platform(s):Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows 8.1
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows Vista
Microsoft Windows XP
Product(s):Adobe AIR
Adobe Flash Player
Definition Synopsis
  • Check the version of Adobe Flash Player 13
  • Adobe Flash Player 13 is installed
  • AND Determine if the version of Adobe Flash Player is less than 13.0.0.241
  • OR Check the version of Adobe Flash Player 14
  • Adobe Flash Player 14 is installed
  • AND Determine if the version of Adobe Flash Player is less than 14.0.0.176
  • OR Determine if the version of Adobe Air is less than or equal 13.0.0.111
  • Adobe AIR is installed
  • AND Determine if the version of Adobe Air is less 14.0.0.178
  • OR Flash.ocx section
  • ActiveX Control is installed
  • AND Flash.ocx versions section
  • Flash.ocx 13 section
  • Determine if the version of Flash.ocx is less than 13.0.0.241
  • AND Determine if the version of Flash.ocx is greater than or equal 13.0.0.0
  • OR Flash.ocx 14 section
  • Determine if the version of Flash.ocx is less than 14.0.0.176
  • AND Determine if the version of Flash.ocx is greater than or equal 14.0.0.0
    • BACK