Adobe Flash Player before 13.0.0.289 and 14.x through 17.x before 17.0.0.188 on Windows and OS X and before 11.2.202.460 on Linux, Adobe AIR before 17.0.0.172, Adobe AIR SDK before 17.0.0.172, and Adobe AIR SDK & Compiler before 17.0.0.172 allow remote attackers to bypass intended restrictions on filesystem write operations via unspecified vectors, a different vulnerability than CVE-2015-3083 and CVE-2015-3085.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Air | Adobe | * | 17.0.0.144 (including) |
| Air_sdk | Adobe | * | 17.0.0.144 (including) |
| Air_sdk_&_compiler | Adobe | * | 17.0.0.144 (including) |
| Red Hat Enterprise Linux 5 Supplementary | RedHat | flash-plugin-0:11.2.202.460-1.el5 | * |
| Supplementary for Red Hat Enterprise Linux 6 | RedHat | flash-plugin-0:11.2.202.460-1.el6_6 | * |
| Adobe-flashplugin | Ubuntu | precise | * |
| Adobe-flashplugin | Ubuntu | trusty | * |
| Adobe-flashplugin | Ubuntu | upstream | * |
| Adobe-flashplugin | Ubuntu | utopic | * |
| Adobe-flashplugin | Ubuntu | vivid | * |
| Flashplugin-nonfree | Ubuntu | devel | * |
| Flashplugin-nonfree | Ubuntu | precise | * |
| Flashplugin-nonfree | Ubuntu | trusty | * |
| Flashplugin-nonfree | Ubuntu | upstream | * |
| Flashplugin-nonfree | Ubuntu | utopic | * |
| Flashplugin-nonfree | Ubuntu | vivid | * |