What is the severity of CVE-2014-0586?

CVE-2014-0586 is considered a critical vulnerability that can lead to arbitrary code execution.

How do I fix CVE-2014-0586?

To fix CVE-2014-0586, update Adobe Flash Player to version 13.0.0.252 or later, 14.x to 14.0.0.179 or later for compatible versions, or 15.x to 15.0.0.223 or later.

What systems are affected by CVE-2014-0586?

CVE-2014-0586 affects Adobe Flash Player prior to versions 13.0.0.252, 14.x before 14.0.0.179, and 15.x before 15.0.0.223 on various operating systems.

Can CVE-2014-0586 be exploited remotely?

Yes, CVE-2014-0586 can be exploited remotely as it allows attackers to execute arbitrary code.

What should I do if I cannot update due to compatibility issues with CVE-2014-0586?

If you cannot update due to compatibility issues, consider disabling Adobe Flash Player until a secure version compatible with your system is available.

Vulnerability/
CVE-2014-0586

critical

CWE

11/11/2014

6/8/2024

CVE-2014-0586: Code Injection

First published: Tue Nov 11 2014(Updated: )

Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and OS X and before 11.2.202.418 on Linux, Adobe AIR before 15.0.0.356, Adobe AIR SDK before 15.0.0.356, and Adobe AIR SDK & Compiler before 15.0.0.356 allow attackers to execute arbitrary code by leveraging an unspecified "type confusion," a different vulnerability than CVE-2014-0577, CVE-2014-0584, CVE-2014-0585, and CVE-2014-0590.

Credit: psirt@adobe.com

Affected Software	Affected Version	How to fix
Adobe Flash Player for Internet Explorer 11	>=13.0<13.0.0.252
Adobe Flash Player for Internet Explorer 11	>=14.0<=14.0.0.179
Adobe Flash Player for Internet Explorer 11	>=15.0<15.0.0.223
macOS Yosemite
Microsoft Windows
Adobe Flash Player for Internet Explorer 11	>=11.0<11.2.202.418
Linux Kernel
Adobe AIR SDK and Compiler	<=15.0.0.356
Adobe AIR	<=15.0.0.356
Adobe AIR SDK & Compiler	<15.0.0.356

Remedy

http://helpx.adobe.com/security/products/flash-player/apsb14-24.html

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2014-0586?
CVE-2014-0586 is considered a critical vulnerability that can lead to arbitrary code execution.
How do I fix CVE-2014-0586?
To fix CVE-2014-0586, update Adobe Flash Player to version 13.0.0.252 or later, 14.x to 14.0.0.179 or later for compatible versions, or 15.x to 15.0.0.223 or later.
What systems are affected by CVE-2014-0586?
CVE-2014-0586 affects Adobe Flash Player prior to versions 13.0.0.252, 14.x before 14.0.0.179, and 15.x before 15.0.0.223 on various operating systems.
Can CVE-2014-0586 be exploited remotely?
Yes, CVE-2014-0586 can be exploited remotely as it allows attackers to execute arbitrary code.
What should I do if I cannot update due to compatibility issues with CVE-2014-0586?
If you cannot update due to compatibility issues, consider disabling Adobe Flash Player until a secure version compatible with your system is available.

agent/references
agent/type
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/severity
agent/remedy
agent/weakness
agent/author
agent/description
agent/event
agent/first-publish-date
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
agent/softwarecombine
vendor/adobe
canonical/adobe flash player for internet explorer 11
version/adobe flash player for internet explorer 11/13.0
version/adobe flash player for internet explorer 11/14.0
version/adobe flash player for internet explorer 11/14.0.0.179
version/adobe flash player for internet explorer 11/15.0
vendor/apple
canonical/macos yosemite
vendor/microsoft
canonical/microsoft windows
version/adobe flash player for internet explorer 11/11.0
vendor/linux
canonical/linux kernel
canonical/adobe air sdk and compiler
version/adobe air sdk and compiler/15.0.0.356
canonical/adobe air
version/adobe air/15.0.0.356
canonical/adobe air sdk & compiler

Frequently Asked Questions

What is the severity of CVE-2014-0586?
CVE-2014-0586 is considered a critical vulnerability that can lead to arbitrary code execution.
How do I fix CVE-2014-0586?
To fix CVE-2014-0586, update Adobe Flash Player to version 13.0.0.252 or later, 14.x to 14.0.0.179 or later for compatible versions, or 15.x to 15.0.0.223 or later.
What systems are affected by CVE-2014-0586?
CVE-2014-0586 affects Adobe Flash Player prior to versions 13.0.0.252, 14.x before 14.0.0.179, and 15.x before 15.0.0.223 on various operating systems.
Can CVE-2014-0586 be exploited remotely?
Yes, CVE-2014-0586 can be exploited remotely as it allows attackers to execute arbitrary code.
What should I do if I cannot update due to compatibility issues with CVE-2014-0586?
If you cannot update due to compatibility issues, consider disabling Adobe Flash Player until a secure version compatible with your system is available.

CVE-2014-0586: Code Injection

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2014-0586?

How do I fix CVE-2014-0586?

What systems are affected by CVE-2014-0586?

Can CVE-2014-0586 be exploited remotely?

What should I do if I cannot update due to compatibility issues with CVE-2014-0586?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2014-0586?

How do I fix CVE-2014-0586?

What systems are affected by CVE-2014-0586?

Can CVE-2014-0586 be exploited remotely?

What should I do if I cannot update due to compatibility issues with CVE-2014-0586?