CVE-2014-0569
EXPLOITED RANSOMWAREAdobe Flash Player < 11.2.202.406 - Integer Overflow
Title source: ruleDescription
Integer overflow in Adobe Flash Player before 13.0.0.250 and 14.x and 15.x before 15.0.0.189 on Windows and OS X and before 11.2.202.411 on Linux, Adobe AIR before 15.0.0.293, Adobe AIR SDK before 15.0.0.302, and Adobe AIR SDK & Compiler before 15.0.0.302 allows attackers to execute arbitrary code via unspecified vectors.
Exploits (2)
exploitdb
WORKING POC
VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/36744
metasploit
WORKING POC
GREAT
by bilou, juan vazquez · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/adobe_flash_casi32_int_overflow.rb
References (9)
Scores
EPSS
0.8901
EPSS Percentile
99.5%
Details
VulnCheck KEV
2016-12-13
Ransomware Use
Confirmed
CWE
CWE-190
Status
published
Products (11)
adobe/air_desktop_runtime
< 15.0.0.249
adobe/air_sdk
< 15.0.0.249
adobe/flash_player
< 11.2.202.406
adobe/flash_player
< 13.0.0.244
adobe/flash_player
< 15.0.0.152
adobe/flash_player
< 15.0.0.167 (2 CPE variants)
adobe/flash_player_desktop_runtime
< 15.0.0.167
opensuse/evergreen
11.4
opensuse/opensuse
12.3
opensuse/opensuse
13.1
... and 1 more
Published
Oct 15, 2014
Tracked Since
Feb 18, 2026