Adobe Flash ActionScript 3 ByteArray Use-After-Free Vulnerability

Original release date: July 07, 2015

Adobe Flash Player contains a vulnerability within the ActionScript 3 ByteArray class, which can allow a remote attacker to execute arbitrary code on a vulnerable system. Versions affected include Adobe Flash Player 9.0 through 18.0.0.194.

Users and administrators are encouraged to review Vulnerability Note VU#561288 for additional information.


This product is provided subject to this Notification and this Privacy & Use policy.




from US-CERT: The United States Computer Emergency Readiness Team http://ift.tt/1glDkqz