Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
attackerkbAttackerKBAKB:FF6A2914-B2FA-40DB-B828-60E45D688C9A
HistoryJan 23, 2015 - 12:00 a.m.

CVE-2015-0310

2015-01-2300:00:00
attackerkb.com
8

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

JSON

Adobe Flash Player before 13.0.0.262 and 14.x through 16.x before 16.0.0.287 on Windows and OS X and before 11.2.202.438 on Linux does not properly restrict discovery of memory addresses, which allows attackers to bypass the ASLR protection mechanism on Windows, and have an unspecified impact on other platforms, via unknown vectors, as exploited in the wild in January 2015.

Recent assessments:

gwillcox-r7 at November 22, 2020 3:44am UTC reported:

Reported as exploited in the wild as part of Google’s 2020 0day vulnerability spreadsheet they made available at <https://docs.google.com/spreadsheets/d/1lkNJ0uQwbeC1ZTRrxdtuPLCIl7mlUreoKfSIgajnSyY/edit#gid=1869060786&gt;. Original tweet announcing this spreadsheet with the 2020 findings can be found at <https://twitter.com/maddiestone/status/1329837665378725888&gt;

Assessed Attacker Value: 0
Assessed Attacker Value: 0Assessed Attacker Value: 0

Related

nessus 9
cisa_kev 1
cve 1
prion 1
openvas 6
suse 4
ubuntucve 1
symantec 1
checkpoint_advisories 2
thn 2
threatpost 1
redhat 1
gentoo 1
nessus
nessus
Flash Player <= 16.0.0.257 Information Disclosure (APSB15-02)
2015-01-23 00:00:00
openSUSE Security Update : flash-player (openSUSE-SU-2015:0110-1)
2015-01-26 00:00:00
MS KB3033408: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer
2015-01-23 00:00:00
cisa_kev
cisa_kev
Adobe Flash Player ASLR Bypass Vulnerability
2022-05-25 00:00:00
cve
cve
CVE-2015-0310
2015-01-23 21:59:00
prion
prion
Design/Logic Flaw
2015-01-23 21:59:00
openvas
openvas
Adobe Flash Player Unspecified Memory Corruption Vulnerability (Jan 2015) - Mac OS X
2015-01-27 00:00:00
SUSE: Security Advisory for flash-player (SUSE-SU-2015:0129-1)
2015-10-16 00:00:00
Adobe Flash Player Unspecified Memory Corruption Vulnerability (Jan 2015) - Linux
2015-01-27 00:00:00
suse
suse
Security update for flash-player (critical)
2015-01-23 00:06:03
Security update for flash-player (critical)
2015-01-24 01:08:02
Security update for flash-player (critical)
2015-01-23 15:04:45
ubuntucve
ubuntucve
CVE-2015-0310
2015-01-23 00:00:00
symantec
symantec
Adobe Flash Player CVE-2015-0310 Unspecified Memory Corruption Vulnerability
2015-01-22 00:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Memory Corruption (APSB15-03: CVE-2015-0310: CVE-2015-0311)
2015-01-28 00:00:00
Adobe Flash Player Action Script Evasion (CVE-2015-0310; CVE-2015-0311)
2015-01-26 00:00:00
thn
thn
Adobe patches 2nd Flash Player Zero-day Vulnerability
2015-01-25 08:11:00
Another Unpatched Adobe Flash Zero-Day vulnerability Exploited in the Wild
2015-02-02 06:29:00
threatpost
threatpost
Adobe Patches One Zero Day in Flash, Still Investigating Separate Vulnerability
2015-01-22 11:43:46
redhat
redhat
(RHSA-2015:0094) Critical: flash-plugin security update
2015-01-27 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2015-02-06 00:00:00

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

JSON
Related for AKB:FF6A2914-B2FA-40DB-B828-60E45D688C9A
nessus9cisa_kev1cve1prion1openvas6suse4ubuntucve1symantec1checkpoint_advisories2thn2threatpost1redhat1gentoo1