CVE-2014-0556

EXPLOITED RANSOMWARE

Adobe Flash Player < 13.0.0.241 - Memory Corruption

Title source: rule

Description

Heap-based buffer overflow in Adobe Flash Player before 13.0.0.244 and 14.x and 15.x before 15.0.0.152 on Windows and OS X and before 11.2.202.406 on Linux, Adobe AIR before 15.0.0.249 on Windows and OS X and before 15.0.0.252 on Android, Adobe AIR SDK before 15.0.0.249, and Adobe AIR SDK & Compiler before 15.0.0.249 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-0559.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/36808

View Code ZIP pw:eip

metasploit WORKING POC GREAT

by Chris Evans, Nicolas Joly, hdarwin, juan vazquez · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/adobe_flash_copy_pixels_to_byte_array.rb

View Code ZIP pw:eip

References (14)

[Various Sources] http://googleprojectzero.blogspot.com/2014/09/exploiting-cve-2014-0556-in-flash.html

[Patch, Vendor Advisory] http://helpx.adobe.com/security/products/flash-player/apsb14-21.html

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00006.html

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00016.html

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00021.html

[Exploit, Third Party Advisory] http://packetstormsecurity.com/files/131516/Adobe-Flash-Player-copyPixelsToByteArray-Integer-Overflow.html

[Third Party Advisory, VDB Entry] http://www.osvdb.org/111110

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/95826

[Issue Tracking] https://code.google.com/p/google-security-research/issues/detail?id=46

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/69696

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/36808/

[Third Party Advisory] http://security.gentoo.org/glsa/glsa-201409-05.xml

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1030822

[Third Party Advisory] http://secunia.com/advisories/61089

Scores

EPSS 0.8603

EPSS Percentile 99.4%

Details

VulnCheck KEV 2014-10-22

Ransomware Use Confirmed

CWE

CWE-119

Status published

Products (50)

adobe/adobe_air 13.0.0.83

adobe/adobe_air 13.0.0.111

adobe/adobe_air 14.0.0.110

adobe/adobe_air 14.0.0.137

adobe/adobe_air < 14.0.0.179

adobe/adobe_air_sdk 13.0.0.83

adobe/adobe_air_sdk 13.0.0.111

adobe/adobe_air_sdk 14.0.0.110

adobe/adobe_air_sdk 14.0.0.137

adobe/adobe_air_sdk < 14.0.0.178

... and 40 more

Published Sep 10, 2014

Tracked Since Feb 18, 2026