Vigil@nce - Adobe Flash Player: two vulnerabilities
March 2014 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can use several vulnerabilities of Adobe Flash Player.
Impacted products: Flash Player, IE, openSUSE, RHEL, SUSE Linux
Enterprise Desktop
Severity: 2/4
Creation date: 11/03/2014
DESCRIPTION OF THE VULNERABILITY
Several vulnerabilities were announced in Adobe Flash Player.
An attacker can bypass the same origin policy, in order to obtain
sensitive information coming from another web site. [severity:2/4;
CVE-2014-0503]
An attacker can read the content of the clipboard, in order to
obtain sensitive information. [severity:2/4; CVE-2014-0504]
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Adobe-Flash-Player-two-vulnerabilities-14402