Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
attackerkbAttackerKBAKB:84D389F9-EDFB-4F16-8080-4C8B9CDA8DD3
HistoryFeb 02, 2015 - 12:00 a.m.

CVE-2015-0313

2015-02-0200:00:00
attackerkb.com
13

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

JSON

Use-after-free vulnerability in Adobe Flash Player before 13.0.0.269 and 14.x through 16.x before 16.0.0.305 on Windows and OS X and before 11.2.202.442 on Linux allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in February 2015, a different vulnerability than CVE-2015-0315, CVE-2015-0320, and CVE-2015-0322.

Recent assessments:

gwillcox-r7 at November 22, 2020 3:46am UTC reported:

Reported as exploited in the wild as part of Google’s 2020 0day vulnerability spreadsheet they made available at <https://docs.google.com/spreadsheets/d/1lkNJ0uQwbeC1ZTRrxdtuPLCIl7mlUreoKfSIgajnSyY/edit#gid=1869060786&gt;. Original tweet announcing this spreadsheet with the 2020 findings can be found at <https://twitter.com/maddiestone/status/1329837665378725888&gt;

Assessed Attacker Value: 0
Assessed Attacker Value: 0Assessed Attacker Value: 0

References

Related

prion 5
cve 5
ubuntucve 5
attackerkb 2
checkpoint_advisories 5
threatpost 5
nessus 13
canvas 1
zdt 1
cisa_kev 1
symantec 1
hackerone 2
packetstorm 1
exploitpack 1
metasploit 1
exploitdb 2
suse 4
mageia 1
archlinux 1
openvas 7
altlinux 1
thn 2
redhat 1
gentoo 1
prion
prion
Design/Logic Flaw
2015-02-06 00:59:00
Design/Logic Flaw
2015-02-06 00:59:00
Design/Logic Flaw
2015-02-02 19:59:00
cve
cve
CVE-2015-0320
2015-02-06 00:59:00
CVE-2015-0315
2015-02-06 00:59:00
CVE-2015-0322
2015-02-06 00:59:00
ubuntucve
ubuntucve
CVE-2015-0320
2015-02-06 00:00:00
CVE-2015-0313
2015-02-02 00:00:00
CVE-2015-0315
2015-02-06 00:00:00
attackerkb
attackerkb
CVE-2015-0322
2015-02-06 00:00:00
CVE-2015-0320
2015-02-06 00:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Remote Code Execution (APSA15-02: CVE-2015-0313)
2015-02-04 00:00:00
HanJuan Exploit Kit Landing Page (CVE-2015-0313)
2015-02-03 00:00:00
Adobe Flash Use After Free Code Execution (APSB15-04: CVE-2015-0320)
2015-02-23 00:00:00
threatpost
threatpost
Adobe Begins Patching Third Flash Player Zero Day
2015-02-04 16:44:42
Another Flash Zero Day Emerges
2015-02-02 08:51:33
Angler Exploit Kit, Bedep Malware Inflating Video Views
2015-05-05 08:00:41
nessus
nessus
FreeBSD : Adobe Flash Player -- critical vulnerability (734bcd49-aae6-11e4-a0c1-c485083ca99c) (deprecated)
2015-02-03 00:00:00
openSUSE Security Update : flash-player (openSUSE-2015-118)
2015-02-09 00:00:00
MS KB3021953: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer
2015-02-06 00:00:00
canvas
canvas
Immunity Canvas: ADOBE_FLASH_DOMAINMEMORY_UAF
2015-02-02 19:59:00
zdt
zdt
Adobe Flash Player ByteArray With Workers Use After Free Exploit
2015-04-02 00:00:00
cisa_kev
cisa_kev
Adobe Flash Player Use-After-Free Vulnerability
2022-04-13 00:00:00
symantec
symantec
Adobe Flash Player CVE-2015-0313 Remote Code Execution Vulnerability
2015-02-02 00:00:00
hackerone
hackerone
Internet Bug Bounty: Use after free during the StageVideoAvailabilityEvent can result in arbitrary code execution
2015-02-09 18:44:09
Internet Bug Bounty: Use After Free in Flash MessageChannel.send can cause arbitrary code execution
2015-02-09 18:50:52
packetstorm
packetstorm
Adobe Flash Player ByteArray With Workers Use After Free
2015-03-30 00:00:00
exploitpack
exploitpack
Adobe Flash Player - Arbitrary Code Execution
2015-03-25 00:00:00
metasploit
metasploit
Adobe Flash Player ByteArray With Workers Use After Free
2015-03-27 23:51:13
exploitdb
exploitdb
Adobe Flash Player - ByteArray With Workers Use-After-Free (Metasploit)
2015-03-31 00:00:00
Adobe Flash Player - Arbitrary Code Execution
2015-03-25 00:00:00
suse
suse
update for flash-player (critical)
2015-02-07 14:04:53
Security update for flash-player, flash-player-gnome, flash-player-kde4 (critical)
2015-02-07 19:07:55
Security update for flash-player (critical)
2015-02-07 10:05:06
mageia
mageia
Updated flash-player-plugin packages fix security vulnerabilities
2015-02-06 19:51:41
archlinux
archlinux
flashplugin: remote code execution
2015-02-06 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0054)
2022-01-28 00:00:00
SUSE: Security Advisory for flash-player (SUSE-SU-2015:0239-1)
2015-10-16 00:00:00
SUSE: Security Advisory for flash-player (SUSE-SU-2015:0236-1)
2015-10-16 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 6 package adobe-flash-player version 3:11-alt41
2015-02-06 00:00:00
thn
thn
Another Unpatched Adobe Flash Zero-Day vulnerability Exploited in the Wild
2015-02-02 06:29:00
Researchers Share New Insights Into RIG Exploit Kit Malware's Operations
2023-02-27 15:33:00
redhat
redhat
(RHSA-2015:0140) Critical: flash-plugin security update
2015-02-06 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2015-02-06 00:00:00

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

JSON
Related for AKB:84D389F9-EDFB-4F16-8080-4C8B9CDA8DD3
prion5cve5ubuntucve5attackerkb2checkpoint_advisories5threatpost5nessus13canvas1zdt1cisa_kev1symantec1hackerone2packetstorm1exploitpack1metasploit1exploitdb2suse4mageia1archlinux1openvas7altlinux1thn2redhat1gentoo1