CVE-2015-5134
Description
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.232 on Windows and OS X and before 11.2.202.508 on Linux, Adobe AIR before 18.0.0.199, Adobe AIR SDK before 18.0.0.199, and Adobe AIR SDK & Compiler before 18.0.0.199 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-5127, CVE-2015-5130, CVE-2015-5539, CVE-2015-5540, CVE-2015-5550, CVE-2015-5551, CVE-2015-5556, CVE-2015-5557, CVE-2015-5559, CVE-2015-5561, CVE-2015-5563, CVE-2015-5564, and CVE-2015-5565.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Adobe Flash Player use-after-free in native AS2 class variable assignment leads to arbitrary code execution.
Vulnerability
A use-after-free vulnerability exists in Adobe Flash Player versions before 18.0.0.232 on Windows and OS X, before 11.2.202.508 on Linux, Adobe AIR before 18.0.0.199, Adobe AIR SDK before 18.0.0.199, and Adobe AIR SDK & Compiler before 18.0.0.199. The flaw occurs when a native AS2 class sets an internal variable that is a SharedObject, leading to a use-after-free condition. This affects variables such as NetConnection.contentType and certain properties of the Sound and NetStream classes [2].
Exploitation
An attacker can trigger the use-after-free by loading a specially crafted SWF file that manipulates AS2 class variables and forces garbage collection. The provided proof-of-concept requires hosting two SWF files (loadswf.swf and donotdelete.swf) on a webserver to work reliably, as local file access may be restricted by Flash network sandboxing. The exploit described is specifically for 64-bit systems, but the vulnerability is also present on 32-bit systems with proper heap setup [2].
Impact
Successful exploitation allows an attacker to execute arbitrary code in the context of the user running Flash Player. This can lead to full system compromise, including installation of malware, data theft, or further network propagation [1][3].
Mitigation
Adobe released fixed versions: Flash Player 18.0.0.232 (Windows/OS X), 11.2.202.508 (Linux), and AIR 18.0.0.199 [1][3]. Red Hat and Gentoo have issued advisories urging immediate update [1][3]. Users should apply updates as soon as possible; no workaround is available.
AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
11- cpe:2.3:a:adobe:air_sdk_\&_compiler:*:*:*:*:*:*:*:*Range: <=18.0.0.180
- Range: <18.0.0.199
- Range: <18.0.0.232
- osv-coords4 versionspkg:rpm/suse/flash-player&distro=SUSE%20Linux%20Enterprise%20Desktop%2011%20SP3pkg:rpm/suse/flash-player&distro=SUSE%20Linux%20Enterprise%20Desktop%2011%20SP4pkg:rpm/suse/flash-player&distro=SUSE%20Linux%20Enterprise%20Desktop%2012pkg:rpm/suse/flash-player&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012
< 11.2.202.508-0.14.1+ 3 more
- (no CPE)range: < 11.2.202.508-0.14.1
- (no CPE)range: < 11.2.202.508-0.14.1
- (no CPE)range: < 11.2.202.508-99.1
- (no CPE)range: < 11.2.202.508-99.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
10- helpx.adobe.com/security/products/flash-player/apsb15-19.htmlnvdPatchVendor Advisory
- lists.opensuse.org/opensuse-security-announce/2015-10/msg00018.htmlnvdThird Party Advisory
- www.securityfocus.com/bid/76288nvdThird Party AdvisoryVDB Entry
- rhn.redhat.com/errata/RHSA-2015-1603.htmlnvd
- www.securitytracker.com/id/1033235nvd
- h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplaynvd
- h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplaynvd
- h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplaynvd
- security.gentoo.org/glsa/201508-01nvd
- www.exploit-db.com/exploits/37852/nvd
News mentions
0No linked articles in our index yet.