CVE-2015-5119 in Flash Player
摘要 (英语)
Use-after-free vulnerability in the ByteArray class in the ActionScript 3 (AS3) implementation in Adobe Flash Player 13.x through 13.0.0.296 and 14.x through 18.0.0.194 on Windows and OS X and 11.x through 11.2.202.468 on Linux allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted Flash content that overrides a ValueOf function, as exploited in the wild in July 2015.
If you want to get best quality of vulnerability data, you may have to visit VulDB.
预定
2015-06-26
披露
2015-07-08
状态
已确认
条目
VulDB provides additional information and datapoints for this CVE:
| 标识符 | 漏洞 | CWE | 可利用 | 对策 | CVE |
|---|---|---|---|---|---|
| 76340 | Adobe Flash Player ActionScript 3 ValueOf 内存损坏 | 119 | 被攻击 | 官方修复 | CVE-2015-5119 |