Adobe Flash Player prior 11.2.202.637/18.0.0.382/23.0.0.185 memory corruption

A vulnerability was found in Adobe Flash Player (Multimedia Player Software) and classified as critical. Affected by this issue is an unknown part. Upgrading to version 11.2.202.637, 18.0.0.382 or 23.0.0.185 eliminates this vulnerability. A possible mitigation has been published immediately after the disclosure of the vulnerability.

Field10/13/2016 09:46 AM05/08/2019 08:58 PM09/23/2022 10:36 AM
typeMultimedia Player SoftwareMultimedia Player SoftwareMultimedia Player Software
vendorAdobeAdobeAdobe
nameFlash PlayerFlash PlayerFlash Player
cwe119 (memory corruption)119 (memory corruption)119 (memory corruption)
risk222
historic000
cvss2_vuldb_basescore6.86.86.8
cvss2_vuldb_tempscore5.35.35.3
cvss2_vuldb_avNNN
cvss2_vuldb_acMMM
cvss2_vuldb_auNNN
cvss2_vuldb_ciPPP
cvss2_vuldb_iiPPP
cvss2_vuldb_aiPPP
cvss2_nvd_avNNN
cvss2_nvd_acLLL
cvss2_nvd_auNNN
cvss2_nvd_ciCCC
cvss2_nvd_iiCCC
cvss2_nvd_aiCCC
cvss3_meta_basescore9.89.89.8
cvss3_meta_tempscore8.88.89.3
cvss3_vuldb_basescore9.89.89.8
cvss3_vuldb_tempscore8.88.88.8
cvss3_nvd_avNNN
cvss3_nvd_acLLL
cvss3_nvd_prNNN
cvss3_nvd_uiNNN
cvss3_nvd_sUUU
cvss3_nvd_cHHH
cvss3_nvd_iHHH
cvss3_nvd_aHHH
date1476144000 (10/11/2016)1476144000 (10/11/2016)1476144000 (10/11/2016)
locationWebsiteWebsiteWebsite
typeSecurity BulletinSecurity BulletinSecurity Bulletin
urlhttps://helpx.adobe.com/security/products/flash-player/apsb16-32.htmlhttps://helpx.adobe.com/security/products/flash-player/apsb16-32.htmlhttps://helpx.adobe.com/security/products/flash-player/apsb16-32.html
identifierAPSB16-32APSB16-32APSB16-32
disputed000
price_0day$25k-$100k$25k-$100k$25k-$100k
price_trend---
nameUpgradeUpgradeUpgrade
date1476144000 (10/11/2016)1476144000 (10/11/2016)1476144000 (10/11/2016)
upgrade_version11.2.202.637/18.0.0.382/23.0.0.18511.2.202.637/18.0.0.382/23.0.0.18511.2.202.637/18.0.0.382/23.0.0.185
cveCVE-2016-4273CVE-2016-4273CVE-2016-4273
cve_nvd_published147631680014763168001476316800
securityfocus934909349093490
securityfocus_titleAdobe Flash Player APSB16-32 Multiple Unspecified Memory Corruption VulnerabilitiesAdobe Flash Player APSB16-32 Multiple Unspecified Memory Corruption VulnerabilitiesAdobe Flash Player APSB16-32 Multiple Unspecified Memory Corruption Vulnerabilities
sectracker103698510369851036985
sectracker_date1476144000 (10/11/2016)1476144000 (10/11/2016)1476144000 (10/11/2016)
sectracker_causeAccess control errorAccess control errorAccess control error
exploitdb405104051040510
nessus_id940429404294042
nessus_nameSUSE SLED12 Security Update : flash-playerqemu (SUSE-SU-2016:2512-1)SUSE SLED12 Security Update : flash-playerqemu (SUSE-SU-2016:2512-1)SUSE SLED12 Security Update : flash-playerqemu (SUSE-SU-2016:2512-1)
nessus_filenamesuse_SU-2016-2512-1.naslsuse_SU-2016-2512-1.naslsuse_SU-2016-2512-1.nasl
nessus_riskCriticalCriticalCritical
nessus_familySuSE Local Security ChecksSuSE Local Security ChecksSuSE Local Security Checks
nessus_typelocallocallocal
nessus_date1476316800 (10/13/2016)1476316800 (10/13/2016)1476316800 (10/13/2016)
openvas_id863837863837863837
openvas_filenamegb_adobe_flash_player_apsb16-32_macosx.naslgb_adobe_flash_player_apsb16-32_macosx.naslgb_adobe_flash_player_apsb16-32_macosx.nasl
openvas_titleAdobe Flash Player Security Updates( apsb16-32 )-MAC OS XAdobe Flash Player Security Updates( apsb16-32 )-MAC OS XAdobe Flash Player Security Updates( apsb16-32 )-MAC OS X
openvas_familyGeneralGeneralGeneral
qualys_id169269169269169269
qualys_titleOpenSuSE Security Update for flash-player (openSUSE-SU-2016:2517-1)OpenSuSE Security Update for flash-player (openSUSE-SU-2016:2517-1)OpenSuSE Security Update for flash-player (openSUSE-SU-2016:2517-1)
seealso92603 92604 92605 92607 92608 92609 92610 92611 92612 92613 9261492603 92604 92605 92607 92608 92609 92610 92611 92612 92613 9261492603 92604 92605 92607 92608 92609 92610 92611 92612 92613 92614
cvss2_vuldb_ePOCPOCPOC
cvss2_vuldb_rlOFOFOF
cvss2_vuldb_rcCCC
cvss3_vuldb_ePPP
cvss3_vuldb_rlOOO
cvss3_vuldb_rcCCC
cvss3_nvd_basescore9.89.89.8
cvss3_vuldb_avNN
cvss3_vuldb_acLL
cvss3_vuldb_prNN
cvss3_vuldb_uiNN
cvss3_vuldb_sUU
cvss3_vuldb_cHH
cvss3_vuldb_iHH
cvss3_vuldb_aHH
person_nameFrancis ProvencherFrancis Provencher
person_nicknameGarage4HackersGarage4Hackers
company_nameZero Day InitiativeZero Day Initiative
confirm_urlhttps://helpx.adobe.com/security/products/flash-player/apsb16-32.htmlhttps://helpx.adobe.com/security/products/flash-player/apsb16-32.html
availability11
publicity11
urlhttps://www.exploit-db.com/exploits/40510/https://www.exploit-db.com/exploits/40510/
cve_assigned1461715200 (04/27/2016)1461715200 (04/27/2016)
securityfocus_date1476144000 (10/11/2016)1476144000 (10/11/2016)
securityfocus_classUnknownUnknown
cve_nvd_summaryAdobe Flash Player before 18.0.0.382 and 19.x through 23.x before 23.0.0.185 on Windows and OS X and before 11.2.202.637 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-6982, CVE-2016-6983, CVE-2016-6984, CVE-2016-6985, CVE-2016-6986, CVE-2016-6989, and CVE-2016-6990.
cvss2_nvd_basescore10.0

Might our Artificial Intelligence support you?

Check our Alexa App!