Common Vulnerabilities and Exposures (CVE®) is a list of records — each containing an identification number, a CVE-2014-0502. Learn more at National Vulnerability Database (NVD).

CVE-2014-0502 Detail. Current Description. Double free vulnerability in Adobe Flash Player before 11.7.700.269 and 11.8.x through 12.0.x before 12.0.0.70 on Windows and Mac OS X and before...

CVE-2014-0502. HIGH. Information. 4.0.0.1628 allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in February 2014.

CVE-2014-0502 at MITRE. Description. Double free vulnerability in Adobe Flash Player before 11.7.700.269 and 11.8.x through 12.0.x before 12.0.0.70 on Windows and Mac OS X and before...

Yesterday FireEye reported about a new Zero-Day affecting Adobe Flash that is being exploited in the wild and Adobe issued a security update regarding the vulnerability.

A new zero-day vulnerability (CVE-2014-0502) in Adobe Flash Player is being exploited in the wild. A double free vulnerability exists in Adobe Flash Player that can be used to execute arbitrary code.

Based on the attack vector mentioned in prior research, we have concluded that recently observed .SWF exploitation is related to the recent zero-day threat flagged as CVE-2014-0502.

In late February of this year multiple security companies (FireEye, AlientVault, SecPod, Symantec, plus many more) were reporting on a Flash zero-day vulnerability (CVE-2014-0502)...

Saturday, May 10, 2014. Deep Analysis of CVE-2014-0502 - A Double Free Story. The Adobe Flash Player zero-day that was part of a targeted attack that infected several nonprofit organizations'...

Dissecting CVE-2014-0502. The exploit first creates a worker instance(more about worker instance: http and executes the shellcode: Posted 5th March 2014 by Am7sus9!

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0498 Final-Decision: Interim-Decision: Modified: Proposed: Assigned Adobe is aware of reports that CVE-2014-0502 is being exploited in the wild.

Double free vulnerability in Adobe Flash Player before 11.7. Threat Encyclopedia. Vulnerabilities. Adobe Flash Player Remote Code Execution Vulnerability (CVE-2014-0502).

I have published a new blog post analyzing the encrypted shellcode from the main CVE-2014-0502 attack

Summary: CVE-2014-0498 CVE-2014-0499 CVE-2014-0502 flash-plugin: multiple flaws lead t... These updates resolve a stack overflow vulnerability that could result in arbitrary code execution...

Tag Archives: CVE-2014-0502.

Contribute to jrrdev/cve-2014-0050 development by creating an account on GitHub.

MITRE CVE Reference: CVE-2014-0502. Targetted asset: Adobe Flash. Exploit kits using this vulnerability/ Exploit kits utilisant cette vulnérabilité: Exploit kits: Infinity (Exploit kit). Botnets using this vulnerability to function/propagate: Botnets: Campaigns using this vulnerability: Campaigns...

CVE-2021-26857 is an insecure deserialization vulnerability in the Unified Messaging service. Insecure deserialization is where untrusted user-controllable data is deserialized by a program.

1 articles tagged CVE-2014-0502. Feb22. by Paul Ducklin.

Untitled. a guest. Feb 26th, 2014. cve-2014-0502. RAW Paste Data.

CVE-2014-0502 Remote Code Execution Flash Player double-free APSB14-07 non-ASLR-msvcr71.dll/ROP.