1. Home
  2. Mapping Frameworks
  3. Known Exploited Vulnerabilities Home
  4. Adobe Flash Player Dereferenced Pointer Vulnerability

Known Exploited Vulnerabilities CVE-2014-8439 Mappings

Adobe Flash Player before 13.0.0.258 and 14.x and 15.x before 15.0.0.239 on Windows and OS X and before 11.2.202.424 on Linux, Adobe AIR before 15.0.0.293, Adobe AIR SDK before 15.0.0.302, and Adobe AIR SDK & Compiler before 15.0.0.302 allow attackers to execute arbitrary code or cause a denial of service (invalid pointer dereference) via unspecified vectors.

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name Notes
CVE-2014-8439 Adobe Flash Player Dereferenced Pointer Vulnerability exploitation_technique T1189 Drive-by Compromise
Comments
This vulnerability is exploited with maliciously-crafted code hosted on a webpage via drive-by compromise.
References
  1. https://exchange.xforce.ibmcloud.com/vulnerabilities/98932
  2. https://thehackernews.com/2014/11/adobe-flash-player-update.html
  3. https://securityaffairs.com/30552/security/adobe-issued-band-flash-player-update-cve-2014-8439.html