Adobe Flash Player versions 29.0.0.140 and earlier have an exploitable type confusion vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.
The product does not correctly convert an object, resource, or structure from one type to a different type.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Flash_player | Adobe | * | 29.0.0.140 (including) |
Red Hat Enterprise Linux 6 Supplementary | RedHat | flash-plugin-0:29.0.0.171-1.el6_9 | * |
Adobe-flashplugin | Ubuntu | artful | * |
Adobe-flashplugin | Ubuntu | bionic | * |
Adobe-flashplugin | Ubuntu | devel | * |
Adobe-flashplugin | Ubuntu | trusty | * |
Adobe-flashplugin | Ubuntu | upstream | * |
Adobe-flashplugin | Ubuntu | xenial | * |
Flashplugin-nonfree | Ubuntu | artful | * |
Flashplugin-nonfree | Ubuntu | bionic | * |
Flashplugin-nonfree | Ubuntu | devel | * |
Flashplugin-nonfree | Ubuntu | trusty | * |
Flashplugin-nonfree | Ubuntu | upstream | * |
Flashplugin-nonfree | Ubuntu | xenial | * |