KLA10727
Code execution vulnerabilities in Adobe Flash Player and AIR

Type confusion, integer overflow, use-after-free and memory corruption vulnerabilities were found in Adobe products. By exploiting these vulnerabilities malicious users can cause denial of service or execute arbitrary code. These vulnerabilities can be exploited remotely via an unknown vectors.

Technical details

Exploit for some of these vulnerabilities is being used in limited targeted attacks.

Adobe Flash Player versions earlier than 20.0.0.267
Adobe Flash Player Extended Support Release versions earlier than 18.0.0.324
Adobe Flash Player for Linux versions earlier than 11.2.202.559
Adobe AIR versions earlier than 20.0.0.233

Update to the latest version
Get Flash Player
Get AIR

The following public exploits exists for this vulnerability:

https://www.exploit-db.com/exploits/39221

https://www.exploit-db.com/exploits/39219

https://www.exploit-db.com/exploits/39220

https://www.exploit-db.com/exploits/39476

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.