Lucene search
AdobeCVE-2014-9163HistoryDec 10, 2014 - 9:59 p.m.
CVE-2014-9163
2014-12-1021:59:35
adobe
web.nvd.nist.gov
861
In Wild
adobe flash player
cve-2014-9163
stack-based buffer overflow
arbitrary code execution
security vulnerability
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.9
Confidence
Low
EPSS
0.072
Percentile
94.1%
Stack-based buffer overflow in Adobe Flash Player before 13.0.0.259 and 14.x and 15.x before 15.0.0.246 on Windows and OS X and before 11.2.202.425 on Linux allows attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in December 2014.
Affected configurations
Node
adobeflash_playerRange13.0–13.0.0.259
ORadobeflash_playerRange14.0–14.0.0.179
ORadobeflash_playerRange15.0–15.0.0.246
applemac_os_x
ORmicrosoftwindows
Node
adobeflash_playerRange11.0–11.2.202.425
linuxlinux_kernel
| Vendor | Product | Version | CPE |
|---|---|---|---|
| adobe | flash_player | * | cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:* |
| apple | mac_os_x | * | cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* |
| microsoft | windows | * | cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:* |
| linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
Related
openvas
openvas
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Stack Buffer Overflow (CVE-2014-9163)
2014-12-14 00:00:00
nvd
nvd
CVE-2014-9163
2014-12-10 21:59:35
zdt
zdt
zdi
zdi
prion
prion
Stack overflow
2014-12-10 21:59:00
cvelist
cvelist
CVE-2014-9163
2014-12-10 21:00:00
symantec
symantec
Adobe Flash Player CVE-2014-9163 Stack Based Buffer Overflow Vulnerability
2014-12-09 00:00:00
attackerkb
attackerkb
CVE-2014-9163
2014-12-10 00:00:00
ubuntucve
ubuntucve
CVE-2014-9163
2014-12-10 00:00:00
cisa_kev
cisa_kev
Adobe Flash Player Stack-Based Buffer Overflow Vulnerability
2022-04-13 00:00:00
threatpost
threatpost
December 2014 Adobe Flash, Reader, Acrobat, ColdFusion Patch
2014-12-09 12:17:22
Chinese Hackers Compromised Forbes.com Using IE, Flash Zero Days
2015-02-11 16:07:36
nessus
nessus
MS KB3008925: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer
2014-12-09 00:00:00
Google Chrome < 39.0.2171.95 Multiple Vulnerabilities (Mac OS X)
2014-12-09 00:00:00
Flash Player < 16.0.0.235 Multiple Vulnerabilities (APSB14-27)
2014-12-22 00:00:00
archlinux
archlinux
flashplugin: multiple issues
2014-12-12 00:00:00
redhat
redhat
(RHSA-2014:1981) Critical: flash-plugin security update
2014-12-10 00:00:00
suse
suse
Security update for flash-player (critical)
2014-12-12 00:05:07
Security update for flash-player (important)
2014-12-12 14:04:42
Security update for flash-player (important)
2014-12-16 01:04:46
mageia
mageia
Updated flash-player-plugin packages fix multiple security vulnerabilities
2014-12-09 23:12:41
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2014-12-11 00:00:00
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.9
Confidence
Low
EPSS
0.072
Percentile
94.1%
Related for CVE-2014-9163