Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

This site is deprecated. Please CLICK HERE for latest updates

Short Name

 APP:MISC:ADOBE-RTMP-UAF

Severity

 Major

Recommended

 No

Recommended Action

 Drop

Category

 APP

Keywords

 Adobe Flash Player RTMP Use-After-Free (CVE-2014-0551)

Release Date

 2014/10/06

Update Number

 2427

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

APP: Adobe Flash Player RTMP Use-After-Free (CVE-2014-0551)


This signature detects an attempt to exploit a Use-After-Free vulnerability in Adobe Flash Player while parsing a specially crafted RTMP streaming data. Successful exploitation could allow an attacker to access the program memory contents and cause arbitrary code execution into the context of the running application.

Extended Description

Adobe Flash Player before 13.0.0.244 and 14.x and 15.x before 15.0.0.152 on Windows and OS X and before 11.2.202.406 on Linux, Adobe AIR before 15.0.0.249 on Windows and OS X and before 15.0.0.252 on Android, Adobe AIR SDK before 15.0.0.249, and Adobe AIR SDK & Compiler before 15.0.0.249 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0547, CVE-2014-0549, CVE-2014-0550, CVE-2014-0552, and CVE-2014-0555.

Affected Products

  • Adobe adobe_air 13.0.0.111
  • Adobe adobe_air 13.0.0.83
  • Adobe adobe_air 14.0.0.110
  • Adobe adobe_air 14.0.0.137
  • Adobe adobe_air 14.0.0.178
  • Adobe adobe_air 14.0.0.179
  • Adobe adobe_air_sdk 13.0.0.111
  • Adobe adobe_air_sdk 13.0.0.83
  • Adobe adobe_air_sdk 14.0.0.110
  • Adobe adobe_air_sdk 14.0.0.137
  • Adobe adobe_air_sdk 14.0.0.178
  • Adobe flash_player 11.2.202.223
  • Adobe flash_player 11.2.202.228
  • Adobe flash_player 11.2.202.233
  • Adobe flash_player 11.2.202.235
  • Adobe flash_player 11.2.202.236
  • Adobe flash_player 11.2.202.238
  • Adobe flash_player 11.2.202.243
  • Adobe flash_player 11.2.202.251
  • Adobe flash_player 11.2.202.258
  • Adobe flash_player 11.2.202.261
  • Adobe flash_player 11.2.202.262
  • Adobe flash_player 11.2.202.270
  • Adobe flash_player 11.2.202.273
  • Adobe flash_player 11.2.202.275
  • Adobe flash_player 11.2.202.280
  • Adobe flash_player 11.2.202.285
  • Adobe flash_player 11.2.202.291
  • Adobe flash_player 11.2.202.297
  • Adobe flash_player 11.2.202.310
  • Adobe flash_player 11.2.202.332
  • Adobe flash_player 11.2.202.335
  • Adobe flash_player 11.2.202.336
  • Adobe flash_player 11.2.202.341
  • Adobe flash_player 11.2.202.346
  • Adobe flash_player 11.2.202.350
  • Adobe flash_player 11.2.202.356
  • Adobe flash_player 11.2.202.359
  • Adobe flash_player 11.2.202.378
  • Adobe flash_player 11.2.202.394
  • Adobe flash_player 11.2.202.400
  • Adobe flash_player 13.0.0.182
  • Adobe flash_player 13.0.0.201
  • Adobe flash_player 13.0.0.206
  • Adobe flash_player 13.0.0.214
  • Adobe flash_player 13.0.0.223
  • Adobe flash_player 13.0.0.231
  • Adobe flash_player 13.0.0.241
  • Adobe flash_player 14.0.0.125
  • Adobe flash_player 14.0.0.145
  • Adobe flash_player 14.0.0.176
  • Adobe flash_player 14.0.0.179
  • Adobe flash_player 15.0.0.144

References

  • CVE: CVE-2014-0551

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out