CVE-2014-0510

Adobe Flash Player 12.0.0.77 - Remote Code Execution via Heap-Based Buffer Overflow

Title source: llm
STIX 2.1

Description

Heap-based buffer overflow in Adobe Flash Player 12.0.0.77 allows remote attackers to execute arbitrary code and bypass a sandbox protection mechanism via unspecified vectors, as demonstrated by Zeguang Zhao and Liang Chen during a Pwn2Own competition at CanSecWest 2014.

References (7)

Core 7
Core References
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-0496.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/66241
Third Party Advisory vendor-advisory x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-201406-08.xml

Scores

EPSS 0.0849
EPSS Percentile 94.4%

Details

CWE
CWE-119
Status published
Products (1)
adobe/flash_player 12.0.0.77
Published Mar 27, 2014
Tracked Since Feb 18, 2026