Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160 on Windows and OS X and before 11.2.202.466 on Linux, Adobe AIR before 18.0.0.144 on Windows and before 18.0.0.143 on OS X and Android, Adobe AIR SDK before 18.0.0.144 on Windows and before 18.0.0.143 on OS X, and Adobe AIR SDK & Compiler before 18.0.0.144 on Windows and before 18.0.0.143 on OS X do not properly restrict discovery of memory addresses, which allows attackers to bypass the ASLR protection mechanism via unspecified vectors.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: adobe

Published:

Updated: 2024-08-06T05:39:31.624Z

Reserved: 2015-04-09T00:00:00

Link: CVE-2015-3108

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Deferred

Published: 2015-06-10T01:59:49.503

Modified: 2025-04-12T10:46:40.837

Link: CVE-2015-3108

cve-icon Redhat

Severity : Low

Publid Date: 2015-06-09T00:00:00Z

Links: CVE-2015-3108 - Bugzilla

cve-icon OpenCVE Enrichment

No data.