Adobe.Flash.Player.ActionScript.Constructprop.Code.Execution
Description
This indicates an attack attempt against a memory-corruption vulnerability in Adobe products.
The vulnerability is caused by an error when the vulnerable software handles an SWF file with malicious ActionScript code. It allows a remote attacker to execute arbitrary code via sending a crafted Flash file.
Affected Products
Adobe Flash Player 10.1.53.64 and earlier versions for Windows, Macintosh, Linux, and Solaris
Adobe AIR 2.0.2.12610 and earlier versions for Windows, Macintosh and Linux
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Refer to the vendor's web site for the suggested workaround:
http://www.adobe.com/support/security/bulletins/apsb10-16.html
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2021-01-11 | 16.995 |