Flash double free vulnerability leads to code execution

Disclosed: 2014-02-27 21:44:27 By clem1 To ibb
Unknown
Vulnerability Details
This bug was reported directly to Adobe and got assigned CVE-2014-0502. http://helpx.adobe.com/security/products/flash-player/apsb14-07.html This one was actively (and it still is) exploited since February 12th in watering hole campaigns against nonprofit research institutions and human right activists websites. If I can get a reward for this vulnerability, I'd be happy to give it to charity!
Actions
View on HackerOne
Report Stats
  • Report ID: 2170
  • State: Closed
  • Substate: resolved
  • Upvotes: 5
Share this report