Oval Definition:oval:org.mitre.oval:def:26758
Revision Date:2015-08-03Version:39
Title:Adobe Flash Player before 13.0.0.244 and 14.x and 15.x before 15.0.0.152 on Windows, Adobe AIR before 15.0.0.249 on Windows do not properly restrict discovery of memory addresses, which allows attackers to bypass the ASLR protection mechanism
Description:Adobe Flash Player before 13.0.0.244 and 14.x and 15.x before 15.0.0.152 on Windows and OS X and before 11.2.202.406 on Linux, Adobe AIR before 15.0.0.249 on Windows and OS X and before 15.0.0.252 on Android, Adobe AIR SDK before 15.0.0.249, and Adobe AIR SDK & Compiler before 15.0.0.249 do not properly restrict discovery of memory addresses, which allows attackers to bypass the ASLR protection mechanism via unspecified vectors.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2014-0557
Platform(s):Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows 8.1
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows Vista
Microsoft Windows XP
Product(s):ActiveX Control
Adobe AIR
Adobe Flash Player
Definition Synopsis
  • Check the version of Adobe Flash Player 13
  • Adobe Flash Player is installed
  • AND Determine if the version of Adobe Flash Player is less than or equal to 13.0.0.241
  • OR Check the version of Adobe Flash Player 14
  • Adobe Flash Player 14 is installed
  • AND Determine if the version of Adobe Flash Player is less than or equal to 14.0.0.179
  • OR Determine if the version of Adobe Air is less than or equal to 14.0.0.178
  • Adobe AIR is installed
  • AND Determine if the version of Adobe Air is less than or equal to 14.0.0.178
  • OR Flash.ocx section
  • ActiveX Control is installed
  • AND Flash.ocx versions section
  • Determine if the version of Flash.ocx is less than or equal to 13.0.0.241
  • OR Check the version of Adobe Flash Player 14
  • Determine if the version of Flash.ocx is less than or equal to 14.0.0.179
  • AND Determine if the version of Flash.ocx is greater than or equal to 14.0.0.0
    • BACK