10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.975 High
EPSS
Percentile
100.0%
Unspecified vulnerability allows remote attackers to execute arbitrary
code via unknown vectors, as exploited in the wild in January 2015.
Heap-based buffer overflow allows attackers to execute arbitrary code
via unspecified vectors, a different vulnerability than CVE-2015-0304.
Use-after-free vulnerability allows attackers to execute arbitrary code
via unspecified vectors.
A vulnerability allows remote attackers to obtain sensitive information
from process memory or cause a denial of service (out-of-bounds read)
via unspecified vectors.
A vulnerability allows attackers to execute arbitrary code or cause a
denial of service (memory corruption) via unspecified vectors, a
different vulnerability than CVE-2015-0303.
A vulnerability allows attackers to execute arbitrary code by leveraging
an unspecified "type confusion".
Heap-based buffer overflow allows attackers to execute arbitrary code
via unspecified vectors, a different vulnerability than CVE-2015-0309.
A vulnerability allows attackers to execute arbitrary code or cause a
denial of service (memory corruption) via unspecified vectors, a
different vulnerability than CVE-2015-0306.
A vulnerability allows attackers to obtain sensitive keystroke
information via unspecified vectors.
The flashplugin does not properly validate files, which has unspecified
impact and attack vectors.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
any | any | any | flashplugin | <ย 11.2.202.440-1 | UNKNOWN |
malware.dontneedcoffee.com/2015/01/unpatched-vulnerability-0day-in-flash.html
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-0301
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-0302
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-0303
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-0304
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-0305
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-0306
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-0307
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-0308
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-0309
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-0311
helpx.adobe.com/security/products/flash-player/apsb15-01.html