This vulnerability has been modified since it was last analyzed by the NVD. It is awaiting reanalysis which may result in further changes to the information provided.
Use-after-free vulnerability in the DisplayObject class in the ActionScript 3 (AS3) implementation in Adobe Flash Player 13.x through 22.214.171.1242 on Windows and OS X, 14.x through 126.96.36.199 on Windows and OS X, 11.x through 188.8.131.521 on Linux, and 12.x through 184.108.40.206 on Linux Chrome installations allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted Flash content that leverages improper handling of the opaqueBackground property, as exploited in the wild in July 2015.
- CVE Dictionary Entry:
- Original release date:
- Last revised: