DescriptionAn unspecified ActiveX control in Adobe Flash Player before and 11.x before, and AIR before, on Windows does not properly perform URL security domain checking, which allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)


NOT-FOR-US: Adobe Flash Player

Search for package or bug name: Reporting problems