CVE-2018-4871

CVE: CVE-2018-4871
Published: 2018-01-09T21:29Z
Vendor: adobe
Products: flash_player
Versions: 28.0.0.126,
Vendor: redhat
Products: enterprise_linux_desktop
Versions: 6.0,
enterprise_linux_server
Versions: 6.0,
enterprise_linux_workstation
Versions: 6.0,
Description Language: en
Description: An Out-of-bounds Read issue was discovered in Adobe Flash Player before 28.0.0.137. This vulnerability occurs because of computation that reads data that is past the end of the target buffer. The use of an invalid (out-of-range) pointer offset during access of internal data structure fields causes the vulnerability. A successful attack can lead to sensitive data exposure.
References:
http://www.securityfocus.com/bid/102465
http://www.securitytracker.com/id/1040155
https://access.redhat.com/errata/RHSA-2018:0081
https://helpx.adobe.com/security/products/flash-player/apsb18-01.html