Adobe Flash Player till 11.2.202.548/18.0.0.261/19.0.0.245 minneskorruption

I Adobe Flash Player till 11.2.202.548/18.0.0.261/19.0.0.245 (Multimedia Player Software) var ett kritiskt svag punkt identifieras. Som påverkar en okänd funktion. En uppgradering till den version 11.2.202.554, 18.0.0.268, 20.0.0.228 eller 20.0.0.235 att åtgärda problemet. En möjlig åtgärd har utfärdats omedelbart efter offentliggörandet.

Fält14/05/2018 08:4130/06/2022 16:2730/06/2022 16:35
typeMultimedia Player SoftwareMultimedia Player SoftwareMultimedia Player Software
vendorAdobeAdobeAdobe
nameFlash PlayerFlash PlayerFlash Player
version<=11.2.202.548/18.0.0.261/19.0.0.245<=11.2.202.548/18.0.0.261/19.0.0.245<=11.2.202.548/18.0.0.261/19.0.0.245
risk222
historic000
cvss2_vuldb_basescore6.86.86.8
cvss2_vuldb_tempscore5.95.95.9
cvss2_vuldb_avNNN
cvss2_vuldb_acMMM
cvss2_vuldb_auNNN
cvss2_vuldb_ciPPP
cvss2_vuldb_iiPPP
cvss2_vuldb_aiPPP
cvss3_meta_basescore7.37.37.3
cvss3_meta_tempscore7.07.07.0
cvss3_vuldb_basescore7.37.37.3
cvss3_vuldb_tempscore7.07.07.0
date1449532800 (08/12/2015)1449532800 (08/12/2015)1449532800 (08/12/2015)
locationWebsiteWebsiteWebsite
typeAdvisoryAdvisoryAdvisory
urlhttps://helpx.adobe.com/security/products/flash-player/apsb15-32.htmlhttps://helpx.adobe.com/security/products/flash-player/apsb15-32.htmlhttps://helpx.adobe.com/security/products/flash-player/apsb15-32.html
identifierAPSB15-32APSB15-32APSB15-32
disputed000
price_0day$25k-$100k$25k-$100k$25k-$100k
price_trend---
nameUpgradeUpgradeUpgrade
date1449532800 (08/12/2015)1449532800 (08/12/2015)1449532800 (08/12/2015)
upgrade_version11.2.202.554/18.0.0.268/20.0.0.228/20.0.0.23511.2.202.554/18.0.0.268/20.0.0.228/20.0.0.23511.2.202.554/18.0.0.268/20.0.0.228/20.0.0.235
cveCVE-2015-8071CVE-2015-8071CVE-2015-8071
cve_nvd_published144970560014497056001449705600
securityfocus787157871578715
securityfocus_titleAdobe Flash Player and AIR APSB15-32 Multiple Use After Free Remote Code Execution VulnerabilitiesAdobe Flash Player and AIR APSB15-32 Multiple Use After Free Remote Code Execution VulnerabilitiesAdobe Flash Player and AIR APSB15-32 Multiple Use After Free Remote Code Execution Vulnerabilities
sectracker103431810343181034318
sectracker_date1449532800 (08/12/2015)1449532800 (08/12/2015)1449532800 (08/12/2015)
sectracker_causeAccess control errorAccess control errorAccess control error
vulnerabilitycenter550035500355003
vulnerabilitycenter_title[APSB15-32] Adobe Flash Player, AIR, AIR SDK and AIR SDK and Compiler Remote Code Execution - CVE-2015-8071[APSB15-32] Adobe Flash Player, AIR, AIR SDK and AIR SDK and Compiler Remote Code Execution - CVE-2015-8071[APSB15-32] Adobe Flash Player, AIR, AIR SDK and AIR SDK and Compiler Remote Code Execution - CVE-2015-8071
vulnerabilitycenter_severityCriticalCriticalCritical
vulnerabilitycenter_creationdate144961920014496192001449619200
vulnerabilitycenter_lastupdate151061760015106176001510617600
vulnerabilitycenter_reportingdate144953280014495328001449532800
nessus_id872438724387243
nessus_nameAdobe AIR <= 19.0.0.241 Multiple Vulnerabilities (APSB15-32)Adobe AIR <= 19.0.0.241 Multiple Vulnerabilities (APSB15-32)Adobe AIR <= 19.0.0.241 Multiple Vulnerabilities (APSB15-32)
nessus_filenameadobe_air_apsb15-32.nasladobe_air_apsb15-32.nasladobe_air_apsb15-32.nasl
nessus_riskHighHighHigh
nessus_familyWindowsWindowsWindows
nessus_typelocallocallocal
nessus_date1449532800 (08/12/2015)1449532800 (08/12/2015)1449532800 (08/12/2015)
openvas_id803456803456803456
openvas_filenamegb_adobe_air_mult_vuln_dec15_win.naslgb_adobe_air_mult_vuln_dec15_win.naslgb_adobe_air_mult_vuln_dec15_win.nasl
openvas_titleAdobe Air Multiple Vulnerabilities Dec15 (Windows)Adobe Air Multiple Vulnerabilities Dec15 (Windows)Adobe Air Multiple Vulnerabilities Dec15 (Windows)
openvas_familyGeneralGeneralGeneral
seealso79654 79655 79656 79657 79658 79659 79660 79661 79662 79663 79664 79665 79666 79667 79668 79669 79670 79671 79672 79673 79674 79675 79676 79677 79678 79679 79680 79681 79682 7968379654 79655 79656 79657 79658 79659 79660 79661 79662 79663 79664 79665 79666 79667 79668 79669 79670 79671 79672 79673 79674 79675 79676 79677 79678 79679 79680 79681 79682 7968379654 79655 79656 79657 79658 79659 79660 79661 79662 79663 79664 79665 79666 79667 79668 79669 79670 79671 79672 79673 79674 79675 79676 79677 79678 79679 79680 79681 79682 79683
cwe416 (minneskorruption)416 (minneskorruption)416 (minneskorruption)
cvss3_vuldb_acLLL
cvss3_vuldb_uiNNN
cvss2_vuldb_eNDNDND
cvss2_vuldb_rlOFOFOF
cvss2_vuldb_rcCCC
cvss3_vuldb_eXXX
cvss3_vuldb_rlOOO
cvss3_vuldb_rcCCC
cvss3_vuldb_avNNN
cvss3_vuldb_prNNN
cvss3_vuldb_sUUU
cvss3_vuldb_cLLL
cvss3_vuldb_iLLL
cvss3_vuldb_aLLL
cvss2_nvd_avNNN
cvss2_nvd_acLLL
cvss2_nvd_auNNN
cvss2_nvd_ciCCC
cvss2_nvd_iiCCC
cvss2_nvd_aiCCC
person_nameNatalie SilvanovichNatalie SilvanovichNatalie Silvanovich
company_nameZero Day InitiativeZero Day InitiativeZero Day Initiative
confirm_urlhttps://helpx.adobe.com/security/products/flash-player/apsb15-32.htmlhttps://helpx.adobe.com/security/products/flash-player/apsb15-32.htmlhttps://helpx.adobe.com/security/products/flash-player/apsb15-32.html
cve_assigned1446422400 (02/11/2015)1446422400 (02/11/2015)1446422400 (02/11/2015)
securityfocus_date1449532800 (08/12/2015)1449532800 (08/12/2015)1449532800 (08/12/2015)
securityfocus_classUnknownUnknownUnknown
cve_nvd_summaryUse-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-8048, CVE-2015-8049, CVE-2015-8050, CVE-2015-8055, CVE-2015-8056, CVE-2015-8057, CVE-2015-8058, CVE-2015-8059, CVE-2015-8061, CVE-2015-8062, CVE-2015-8063, CVE-2015-8064, CVE-2015-8065, CVE-2015-8066, CVE-2015-8067, CVE-2015-8068, CVE-2015-8069, CVE-2015-8070, CVE-2015-8401, CVE-2015-8402, CVE-2015-8403, CVE-2015-8404, CVE-2015-8405, CVE-2015-8406, CVE-2015-8410, CVE-2015-8411, CVE-2015-8412, CVE-2015-8413, CVE-2015-8414, CVE-2015-8420, CVE-2015-8421, CVE-2015-8422, CVE-2015-8423, CVE-2015-8424, CVE-2015-8425, CVE-2015-8426, CVE-2015-8427, CVE-2015-8428, CVE-2015-8429, CVE-2015-8430, CVE-2015-8431, CVE-2015-8432, CVE-2015-8433, CVE-2015-8434, CVE-2015-8435, CVE-2015-8436, CVE-2015-8437, CVE-2015-8441, CVE-2015-8442, CVE-2015-8447, CVE-2015-8448, CVE-2015-8449, CVE-2015-8450, CVE-2015-8452, and CVE-2015-8454.Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-8048, CVE-2015-8049, CVE-2015-8050, CVE-2015-8055, CVE-2015-8056, CVE-2015-8057, CVE-2015-8058, CVE-2015-8059, CVE-2015-8061, CVE-2015-8062, CVE-2015-8063, CVE-2015-8064, CVE-2015-8065, CVE-2015-8066, CVE-2015-8067, CVE-2015-8068, CVE-2015-8069, CVE-2015-8070, CVE-2015-8401, CVE-2015-8402, CVE-2015-8403, CVE-2015-8404, CVE-2015-8405, CVE-2015-8406, CVE-2015-8410, CVE-2015-8411, CVE-2015-8412, CVE-2015-8413, CVE-2015-8414, CVE-2015-8420, CVE-2015-8421, CVE-2015-8422, CVE-2015-8423, CVE-2015-8424, CVE-2015-8425, CVE-2015-8426, CVE-2015-8427, CVE-2015-8428, CVE-2015-8429, CVE-2015-8430, CVE-2015-8431, CVE-2015-8432, CVE-2015-8433, CVE-2015-8434, CVE-2015-8435, CVE-2015-8436, CVE-2015-8437, CVE-2015-8441, CVE-2015-8442, CVE-2015-8447, CVE-2015-8448, CVE-2015-8449, CVE-2015-8450, CVE-2015-8452, and CVE-2015-8454.
cvss2_nvd_basescore10.010.0
exploitdb39042

Do you need the next level of professionalism?

Upgrade your account now!