Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
archlinuxArch LinuxASA-201411-11
HistoryNov 13, 2014 - 12:00 a.m.

flashplugin: remote code execution

2014-11-1300:00:00
Arch Linux
lists.archlinux.org
24

0.973 High

EPSS

Percentile

99.9%

JSON

These updates resolve memory corruption vulnerabilities that could lead
to code execution (CVE-2014-0576, CVE-2014-0581, CVE-2014-8440,
CVE-2014-8441).

These updates resolve use-after-free vulnerabilities that could lead to
code execution (CVE-2014-0573, CVE-2014-0588, CVE-2014-8438).

These updates resolve a double free vulnerability that could lead to
code execution (CVE-2014-0574).

These updates resolve type confusion vulnerabilities that could lead to
code execution (CVE-2014-0577, CVE-2014-0584, CVE-2014-0585,
CVE-2014-0586, CVE-2014-0590).

These updates resolve heap buffer overflow vulnerabilities that could
lead to code execution (CVE-2014-0582, CVE-2014-0589).

These updates resolve an information disclosure vulnerability that could
be exploited to disclose session tokens (CVE-2014-8437).

These updates resolve a heap buffer overflow vulnerability that could be
exploited to perform privilege escalation from low to medium integrity
level (CVE-2014-0583).

These updates resolve a permission issue that could be exploited to
perform privilege escalation from low to medium integrity level
(CVE-2014-8442).

OSVersionArchitecturePackageVersionFilename
anyanyanyflashplugin<Β 11.2.202.418-1UNKNOWN

References

Related

nessus 19
suse 4
openvas 9
redhat 1
mageia 1
gentoo 1
cve 18
nvd 18
cvelist 18
ubuntucve 18
prion 18
checkpoint_advisories 15
hackerone 2
packetstorm 1
threatpost 6
symantec 3
metasploit 1
zdt 1
exploitdb 1
thn 1
freebsd 1
chrome 1
nessus
nessus
SuSE 11.3 Security Update : flash-player (SAT Patch Number 9958)
2014-11-18 00:00:00
RHEL 5 / 6 : flash-plugin (RHSA-2014:1852)
2014-11-13 00:00:00
openSUSE Security Update : flash-player (openSUSE-SU-2014:1444-1)
2014-11-19 00:00:00
suse
suse
Security update for flash-player (important)
2014-11-18 12:04:40
Security update for flash-player (important)
2014-11-18 01:05:27
Security update for Adobe Flash Player (important)
2015-04-16 13:04:48
openvas
openvas
Adobe Flash Player Multiple Vulnerabilities (APSB14-24) - Mac OS X
2014-11-14 00:00:00
Adobe Flash Player Multiple Vulnerabilities (APSB14-24) - Linux
2014-11-14 00:00:00
Adobe AIR Multiple Vulnerabilities (APSB14-24) - Windows
2014-11-14 00:00:00
redhat
redhat
(RHSA-2014:1852) Critical: flash-plugin security update
2014-11-13 00:00:00
mageia
mageia
Updated flash-player-plugin packages fix multiple security vulnerabilities
2014-11-14 04:27:45
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2014-11-21 00:00:00
cve
cve
CVE-2014-0586
2014-11-11 23:55:02
CVE-2014-0577
2014-11-11 23:55:02
CVE-2014-0584
2014-11-11 23:55:02
nvd
nvd
CVE-2014-0577
2014-11-11 23:55:02
CVE-2014-0585
2014-11-11 23:55:02
CVE-2014-0586
2014-11-11 23:55:02
cvelist
cvelist
CVE-2014-0585
2014-11-11 23:00:00
CVE-2014-0577
2014-11-11 23:00:00
CVE-2014-0586
2014-11-11 23:00:00
ubuntucve
ubuntucve
CVE-2014-0585
2014-11-11 00:00:00
CVE-2014-0584
2014-11-11 00:00:00
CVE-2014-0577
2014-11-11 00:00:00
prion
prion
Type confusion
2014-11-11 23:55:00
Type confusion
2014-11-11 23:55:00
Type confusion
2014-11-11 23:55:00
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Use After Free Code Execution (APSB14-24: CVE-2014-8438)
2015-01-25 00:00:00
Adobe Flash Player Heap Buffer Overflow (APSB14-24: CVE-2014-0589)
2015-02-03 00:00:00
Adobe Flash Player Memory Corruption (APSB14-24: CVE-2014-8440)
2014-12-10 00:00:00
hackerone
hackerone
Internet Bug Bounty: Adobe Flash Player MP4 Use-After-Free Vulnerability
2014-11-17 06:20:07
Internet Bug Bounty: Race condition in Flash workers may cause an exploitabl​e double free
2014-11-24 08:10:24
packetstorm
packetstorm
Adobe Flash Player UncompressViaZlibVariant Uninitialized Memory
2015-05-01 00:00:00
threatpost
threatpost
Angler Exploit Kit Adds New Flash Exploit
2014-11-20 08:02:52
Citadel Variant Targets Password Managers
2014-11-19 14:54:34
Exploit for Flash Zero Day Appears in Angler Exploit Kit
2015-01-21 11:53:31
symantec
symantec
Adobe Flash Player and AIR CVE-2014-8440 Unspecified Memory Corruption Vulnerability
2014-11-11 00:00:00
Adobe Flash Player and AIR CVE-2014-0577 Type Confusion Remote Code Execution Vulnerability
2014-11-11 00:00:00
Adobe Flash Player and AIR CVE-2014-0588 Use After Free Remote Code Execution Vulnerability
2014-11-11 00:00:00
metasploit
metasploit
Adobe Flash Player UncompressViaZlibVariant Uninitialized Memory
2015-04-29 22:52:04
zdt
zdt
Adobe Flash Player UncompressViaZlibVariant Uninitialized Memory Exploit
2015-05-01 00:00:00
exploitdb
exploitdb
Adobe Flash Player - UncompressViaZlibVariant Uninitialized Memory (Metasploit)
2015-05-01 00:00:00
thn
thn
Adobe Releases Emergency Flash Player Update to Address Critical Vulnerability
2014-11-25 21:27:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2014-11-18 00:00:00
chrome
chrome
Stable Channel Update
2014-11-18 00:00:00

0.973 High

EPSS

Percentile

99.9%

JSON
Related for ASA-201411-11
nessus19suse4openvas9redhat1mageia1gentoo1cve18nvd18cvelist18ubuntucve18prion18checkpoint_advisories15hackerone2packetstorm1threatpost6symantec3metasploit1zdt1exploitdb1thn1freebsd1chrome1