CVE-2014-0497

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://googlechromereleases.blogspot.com/2014/02/stable-channel-update.html", "name": "http://googlechromereleases.blogspot.com/2014/02/stable-channel-update.html", "tags": ["Release Notes"], "refsource": ""}, {"url": "http://googlechromereleases.blogspot.com/2014/02/stable-channel-update.html", "name": "http://googlechromereleases.blogspot.com/2014/02/stable-channel-update.html", "tags": ["Release Notes"], "refsource": ""}, {"url": "http://helpx.adobe.com/security/products/flash-player/apsb14-04.html", "name": "http://helpx.adobe.com/security/products/flash-player/apsb14-04.html", "tags": ["Broken Link", "Patch", "Vendor Advisory"], "refsource": ""}, {"url": "http://helpx.adobe.com/security/products/flash-player/apsb14-04.html", "name": "http://helpx.adobe.com/security/products/flash-player/apsb14-04.html", "tags": ["Broken Link", "Patch", "Vendor Advisory"], "refsource": ""}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00000.html", "name": "openSUSE-SU-2014:0197", "tags": ["Mailing List"], "refsource": ""}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00000.html", "name": "openSUSE-SU-2014:0197", "tags": ["Mailing List"], "refsource": ""}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00001.html", "name": "openSUSE-SU-2014:0203", "tags": ["Mailing List"], "refsource": ""}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00001.html", "name": "openSUSE-SU-2014:0203", "tags": ["Mailing List"], "refsource": ""}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00006.html", "name": "SUSE-SU-2014:0221", "tags": ["Mailing List"], "refsource": ""}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00006.html", "name": "SUSE-SU-2014:0221", "tags": ["Mailing List"], "refsource": ""}, {"url": "http://rhn.redhat.com/errata/RHSA-2014-0137.html", "name": "RHSA-2014:0137", "tags": ["Third Party Advisory"], "refsource": ""}, {"url": "http://rhn.redhat.com/errata/RHSA-2014-0137.html", "name": "RHSA-2014:0137", "tags": ["Third Party Advisory"], "refsource": ""}, {"url": "http://secunia.com/advisories/56437", "name": "56437", "tags": ["Broken Link", "Third Party Advisory"], "refsource": ""}, {"url": "http://secunia.com/advisories/56437", "name": "56437", "tags": ["Broken Link", "Third Party Advisory"], "refsource": ""}, {"url": "http://secunia.com/advisories/56737", "name": "56737", "tags": ["Broken Link", "Third Party Advisory"], "refsource": ""}, {"url": "http://secunia.com/advisories/56737", "name": "56737", "tags": ["Broken Link", "Third Party Advisory"], "refsource": ""}, {"url": "http://secunia.com/advisories/56780", "name": "56780", "tags": ["Broken Link", "Third Party Advisory"], "refsource": ""}, {"url": "http://secunia.com/advisories/56780", "name": "56780", "tags": ["Broken Link", "Third Party Advisory"], "refsource": ""}, {"url": "http://secunia.com/advisories/56799", "name": "56799", "tags": ["Broken Link", "Third Party Advisory"], "refsource": ""}, {"url": "http://secunia.com/advisories/56799", "name": "56799", "tags": ["Broken Link", "Third Party Advisory"], "refsource": ""}, {"url": "http://secunia.com/advisories/56839", "name": "56839", "tags": ["Broken Link", "Third Party Advisory"], "refsource": ""}, {"url": "http://secunia.com/advisories/56839", "name": "56839", "tags": ["Broken Link", "Third Party Advisory"], "refsource": ""}, {"url": "http://www.exploit-db.com/exploits/33212", "name": "33212", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": ""}, {"url": "http://www.exploit-db.com/exploits/33212", "name": "33212", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": ""}, {"url": "http://www.osvdb.org/102849", "name": "102849", "tags": ["Broken Link"], "refsource": ""}, {"url": "http://www.osvdb.org/102849", "name": "102849", "tags": ["Broken Link"], "refsource": ""}, {"url": "http://www.securityfocus.com/bid/65327", "name": "65327", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "refsource": ""}, {"url": "http://www.securityfocus.com/bid/65327", "name": "65327", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "refsource": ""}, {"url": "http://www.securitytracker.com/id/1029715", "name": "1029715", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "refsource": ""}, {"url": "http://www.securitytracker.com/id/1029715", "name": "1029715", "tags": ["Broken Link", "Third Party Advisory", "VDB Entry"], "refsource": ""}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/90884", "name": "adobe-flash-cve20140497-code-exec(90884)", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": ""}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/90884", "name": "adobe-flash-cve20140497-code-exec(90884)", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": ""}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Integer underflow in Adobe Flash Player before 11.7.700.261 and 11.8.x through 12.0.x before 12.0.0.44 on Windows and Mac OS X, and before 11.2.202.336 on Linux, allows remote attackers to execute arbitrary code via unspecified vectors."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-191"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2014-0497", "ASSIGNER": "psirt@adobe.com"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "HIGH", "acInsufInfo": false, "impactScore": 10.0, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "baseMetricV3": {"cvssV3": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}}, "publishedDate": "2014-02-05T05:15Z", "configurations": {"nodes": [{"children": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "11.2.202.336"}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}]}], "operator": "AND", "cpe_match": []}, {"children": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "11.7.700.261"}, {"cpe23Uri": "cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "12.0.0.44", "versionStartIncluding": "11.8.800.94"}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}]}], "operator": "AND", "cpe_match": []}, {"children": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "32.0.1700.107"}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:google:chrome_os:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}]}], "operator": "AND", "cpe_match": []}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_aus:6.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_eus:6.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:suse:linux_enterprise_desktop:11:sp3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:opensuse:opensuse:12.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:suse:linux_enterprise_desktop:11:sp2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2024-12-20T14:20Z"}