VYPR
Get started
← All advisories
High severity8.8NVD Advisory· Published Feb 10, 2016· Updated May 6, 2026

CVE-2016-0978

CVE-2016-0978

Description

Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-0964, CVE-2016-0965, CVE-2016-0966, CVE-2016-0967, CVE-2016-0968, CVE-2016-0969, CVE-2016-0970, CVE-2016-0972, CVE-2016-0976, CVE-2016-0977, CVE-2016-0979, CVE-2016-0980, and CVE-2016-0981.

Affected products

9
  • Adobe Inc./Flash Player5 versions
    cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*range: <=11.2.202.559
    • cpe:2.3:a:adobe:flash_player:*:*:*:*:esr:*:*:*range: <=18.0.0.326
    • cpe:2.3:a:adobe:flash_player:*:*:*:*:*:internet_explorer:*:*range: <=20.0.0.272
    • cpe:2.3:a:adobe:flash_player:*:*:*:*:*:chrome:*:*range: <=20.0.0.286
    • cpe:2.3:a:adobe:flash_player:*:*:*:*:*:edge:*:*range: <=20.0.0.272
  • Adobe Inc./Flash Player Desktop Runtime
    cpe:2.3:a:adobe:flash_player_desktop_runtime:*:*:*:*:*:*:*:*
    Range: <=20.0.0.286
  • Adobe Inc./Air Desktop Runtime
    cpe:2.3:a:adobe:air_desktop_runtime:*:*:*:*:*:*:*:*
    Range: <=20.0.0.233
  • Adobe Inc./Air Sdk
    cpe:2.3:a:adobe:air_sdk:*:*:*:*:*:*:*:*
    Range: <=20.0.0.233
  • Adobe Inc./Air Sdk \& Compiler
    cpe:2.3:a:adobe:air_sdk_\&_compiler:*:*:*:*:*:*:*:*
    Range: <=20.0.0.233

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

8

News mentions

0

No linked articles in our index yet.