Think you have a false positive on this rule?

Sid 1-49585


FILE-FLASH Adobe Flash Player byteArray uncompress information disclosure attempt


This event is generated when an attacker attempts to exploit an information disclosure vulnerability in Adobe Flash Player related to the byteArray.uncompress function.


Attempted User Privilege Gain


CVSS base score 10.0

CVSS impact score 10.0

CVSS exploitability score 10.0

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

Detailed information

CVE-2014-8440: Adobe Flash Player before and 14.x and 15.x before on Windows and OS X and before on Linux, Adobe AIR before, Adobe AIR SDK before, and Adobe AIR SDK & Compiler before allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0576, CVE-2014-0581, and CVE-2014-8441.

Affected systems

  • adobe air
  • adobe air_sdk
  • adobe airsdk&_compiler
  • adobe flash_player
  • adobe flash_player
  • adobe flash_player
  • adobe flash_player

Ease of attack


Access Vector NETWORK

Access Complexity LOW

Authentication NONE

False positives

False negatives

Corrective action


  • Cisco Talos Intelligence Group

Additional References