Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
archlinuxArch LinuxASA-201412-13
HistoryDec 12, 2014 - 12:00 a.m.

flashplugin: multiple issues

2014-12-1200:00:00
Arch Linux
lists.archlinux.org
19

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.716 High

EPSS

Percentile

97.7%

JSON

  • CVE-2014-0580 (policy bypass)
    A flaw allows remote attackers to bypass the same origin policy via
    unspecified vectors.

  • CVE-2014-0587 (arbitrary code execution)
    A flaw allows attackers to execute arbitrary code or cause a denial of
    service (memory corruption) via unspecified vectors.

  • CVE-2014-8443 (arbitrary code execution)
    A flaw allows attackers to execute arbitrary code via a use-after-free
    vulnerability.

  • CVE-2014-9163 (arbitrary code execution)
    A flaw allows attackers to execute arbitrary code via a stack-based
    buffer overflow vulnerability.

  • CVE-2014-9164 (arbitrary code execution)
    A flaw allows attackers to execute arbitrary code or cause a denial of
    service (memory corruption) via unspecified vectors.

  • CVE-2014-9162 (information disclosure)
    A flaw allows attackers to obtain sensitive information via unspecified
    vectors.

OSVersionArchitecturePackageVersionFilename
anyanyanyflashplugin< 11.2.202.425-1UNKNOWN

Related

nessus 11
redhat 1
suse 3
openvas 8
mageia 1
gentoo 1
cve 6
prion 6
ubuntucve 6
checkpoint_advisories 4
zdt 2
attackerkb 1
symantec 1
cisa_kev 1
zdi 2
threatpost 2
nessus
nessus
MS KB3008925: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer
2014-12-09 00:00:00
Google Chrome < 39.0.2171.95 Multiple Vulnerabilities (Mac OS X)
2014-12-09 00:00:00
Flash Player < 16.0.0.235 Multiple Vulnerabilities (APSB14-27)
2014-12-22 00:00:00
redhat
redhat
(RHSA-2014:1981) Critical: flash-plugin security update
2014-12-10 00:00:00
suse
suse
Security update for flash-player (critical)
2014-12-12 00:05:07
Security update for flash-player (important)
2014-12-12 14:04:42
Security update for flash-player (important)
2014-12-16 01:04:46
openvas
openvas
Mageia: Security Advisory (MGASA-2014-0521)
2022-01-28 00:00:00
SUSE: Security Advisory for flash-player (SUSE-SU-2014:1650-1)
2015-10-16 00:00:00
Adobe Flash Player Multiple Vulnerabilities (APSB14-27)- 01 (Dec 2014) - Linux
2014-12-15 00:00:00
mageia
mageia
Updated flash-player-plugin packages fix multiple security vulnerabilities
2014-12-09 23:12:41
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2014-12-11 00:00:00
cve
cve
CVE-2014-9164
2014-12-10 21:59:00
CVE-2014-0587
2014-12-10 21:59:00
CVE-2014-9163
2014-12-10 21:59:00
prion
prion
Memory corruption
2014-12-10 21:59:00
Memory corruption
2014-12-10 21:59:00
Information disclosure
2014-12-10 21:59:00
ubuntucve
ubuntucve
CVE-2014-9164
2014-12-10 00:00:00
CVE-2014-0587
2014-12-10 00:00:00
CVE-2014-9163
2014-12-10 00:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Stack Buffer Overflow (CVE-2014-9163)
2014-12-14 00:00:00
Adobe Flash Player Information Disclosure (APSB14-27: CVE-2014-9162)
2014-12-25 00:00:00
Adobe Flash Player Use After Free Code Execution (APSB14-27: CVE-2014-8443)
2015-01-11 00:00:00
zdt
zdt
Adobe Flash Player parseFloat Stack Buffer Overflow Remote Code Execution Vulnerability
2014-12-10 00:00:00
Adobe Flash Player Regular Expression Object Out-Of-Bound Read Information Disclosure Vulnerability
2014-12-10 00:00:00
attackerkb
attackerkb
CVE-2014-9163
2014-12-10 00:00:00
symantec
symantec
Adobe Flash Player CVE-2014-9163 Stack Based Buffer Overflow Vulnerability
2014-12-09 00:00:00
cisa_kev
cisa_kev
Adobe Flash Player Stack-Based Buffer Overflow Vulnerability
2022-04-13 00:00:00
zdi
zdi
Adobe Flash Player parseFloat Stack Buffer Overflow Remote Code Execution Vulnerability
2014-12-09 00:00:00
Adobe Flash Player Regular Expression Object Out-Of-Bound Read Information Disclosure Vulnerability
2014-12-09 00:00:00
threatpost
threatpost
Chinese Hackers Compromised Forbes.com Using IE, Flash Zero Days
2015-02-11 16:07:36
December 2014 Adobe Flash, Reader, Acrobat, ColdFusion Patch
2014-12-09 12:17:22

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.716 High

EPSS

Percentile

97.7%

JSON
Related for ASA-201412-13
nessus11redhat1suse3openvas8mageia1gentoo1cve6prion6ubuntucve6checkpoint_advisories4zdt2attackerkb1symantec1cisa_kev1zdi2threatpost2