Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Flash Player <= 15.0.0.223 Dereferenced Memory Pointer RCE (APSB14-26)

High

Synopsis

The remote host is running an outdated version of Adobe Flash Player for Internet Explorer which is affected by a remote code execution vulnerability.

Description

According to its version number, the instance of Flash Player on the remote host is exposed to an arbitrary code execution vulnerability by means of a malicious SWF file. This vulnerability exists due to the processing of a dereferenced memory pointer when handling SWF files.

Solution

Upgrade to version 15.0.0.239 or later.\n\nAlternatively, Adobe has made version 13.0.0.258 available for those who cannot be upgraded to 15.x.