Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSDE206DF57-F97B-11E4-B799-C485083CA99C
HistoryMay 12, 2015 - 12:00 a.m.

Adobe Flash Player -- critical vulnerabilities

2015-05-1200:00:00
vuxml.freebsd.org
22

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.974 High

EPSS

Percentile

99.9%

JSON

Adobe reports:

   Adobe has released security updates for Adobe Flash Player for
   Windows, Macintosh and Linux. These updates address vulnerabilities
   that could potentially allow an attacker to take control of the
   affected system. Adobe recommends users update their product
   installations to the latest versions.
  

   These updates resolve memory corruption vulnerabilities that could
   lead to code execution (CVE-2015-3078, CVE-2015-3089, CVE-2015-3090,
   CVE-2015-3093).
  

   These updates resolve a heap overflow vulnerability that could lead
   to code execution (CVE-2015-3088).
  

   These updates resolve a time-of-check time-of-use (TOCTOU) race
   condition that could be exploited to bypass Protected Mode in
   Internet Explorer (CVE-2015-3081).
  

   These updates resolve validation bypass issues that could be
   exploited to write arbitrary data to the file system under user
   permissions (CVE-2015-3082, CVE-2015-3083, CVE-2015-3085).
  

   These updates resolve an integer overflow vulnerability that could
   lead to code execution (CVE-2015-3087).
  

   These updates resolve a type confusion vulnerability that could lead
   to code execution (CVE-2015-3077, CVE-2015-3084, CVE-2015-3086).
  

   These updates resolve a use-after-free vulnerability that could lead
   to code execution (CVE-2015-3080).
  

   These updates resolve memory leak vulnerabilities that could be used
   to bypass ASLR (CVE-2015-3091, CVE-2015-3092).
  

   These updates resolve a security bypass vulnerability that could lead
   to information disclosure (CVE-2015-3079), and provide additional
   hardening to protect against CVE-2015-3044.
OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchlinux-c6-flashplugin<= 11.2r202.457UNKNOWN
FreeBSDanynoarchlinux-f10-flashplugin<= 11.2r202.457UNKNOWN

Related

nessus 28
openvas 15
suse 7
altlinux 4
mageia 2
redhat 2
gentoo 2
securityvulns 1
kaspersky 2
prion 18
ubuntucve 18
cve 18
checkpoint_advisories 17
hackerone 2
zdt 7
zdi 1
googleprojectzero 2
metasploit 1
packetstorm 1
exploitdb 1
threatpost 1
freebsd 1
archlinux 1
nessus
nessus
Google Chrome < 42.0.2311.152 Multiple Vulnerabilities
2015-05-12 00:00:00
Adobe Flash Player <= 17.0.0.169 Multiple Vulnerabilities (APSB15-09) (Mac OS X)
2015-05-12 00:00:00
Adobe Flash Player <= 17.0.0.169 Multiple Vulnerabilities (APSB15-09)
2015-05-12 00:00:00
openvas
openvas
Adobe Flash Player Multiple Vulnerabilities - 01 (May 2015) - Windows
2015-05-15 00:00:00
Adobe Flash Player Multiple Vulnerabilities - 01 (May 2015) - Mac OS X
2015-05-15 00:00:00
Adobe Air Multiple Vulnerabilities - 01 (May 2015) - Windows
2015-05-15 00:00:00
suse
suse
Security update for flash-player (important)
2015-05-19 17:04:53
Security update for flash-player (important)
2015-05-16 00:05:04
Security update for flash-player (important)
2015-05-14 20:04:55
altlinux
altlinux
Security fix for the ALT Linux 6 package adobe-flash-player version 3:11-alt44
2015-05-15 00:00:00
Security fix for the ALT Linux 7 package adobe-flash-player version 3:11-alt44
2015-05-15 00:00:00
Security fix for the ALT Linux 6 package adobe-flash-player version 3:11-alt43
2015-04-15 00:00:00
mageia
mageia
Updated flash-player-plugin packages fix security vulnerabilities
2015-05-12 22:37:48
Updated flash-player-plugin packages fix security vulnerabilities
2015-04-15 12:01:28
redhat
redhat
(RHSA-2015:1005) Critical: flash-plugin security update
2015-05-13 00:00:00
(RHSA-2015:0813) Critical: flash-plugin security update
2015-04-15 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2015-05-31 00:00:00
Adobe Flash Player: Multiple vulnerabilities
2015-04-17 00:00:00
securityvulns
securityvulns
Adobe Flash Player multiple security vulnerabilities
2015-05-13 00:00:00
kaspersky
kaspersky
KLA10576 Flash Player update for Google Chrome
2015-05-12 00:00:00
KLA10574 Multiple vulnerabilities in Adobe Flash Player
2015-05-12 00:00:00
prion
prion
Memory corruption
2015-05-13 11:00:00
Memory corruption
2015-05-13 11:00:00
Memory corruption
2015-05-13 11:00:00
ubuntucve
ubuntucve
CVE-2015-3093
2015-05-13 00:00:00
CVE-2015-3090
2015-05-13 00:00:00
CVE-2015-3078
2015-05-13 00:00:00
cve
cve
CVE-2015-3089
2015-05-13 11:00:00
CVE-2015-3093
2015-05-13 11:00:00
CVE-2015-3078
2015-05-13 11:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Validation Bypass (APSB15-09: CVE-2015-3085; CVE-2015-3082)
2015-06-02 00:00:00
Adobe Flash Player Memory Corruption (APSB15-09: CVE-2015-3093)
2015-06-07 00:00:00
Adobe Flash Player Memory Leak (APSB15-09: CVE-2015-3091)
2015-06-09 00:00:00
hackerone
hackerone
Internet Bug Bounty: Internet-based attacker can run Flash apps in local sandboxes by using special URL schemes (PSIRT-3299, CVE-2015-3079)
2015-06-30 14:33:56
Internet Bug Bounty: Flash Player information disclosure (etc.) CVE-2015-3044, PSIRT-3298
2015-05-21 19:39:15
zdt
zdt
Flash Player Integer Overflow in Function.apply Exploit
2015-08-19 00:00:00
Flash AVSS.setSubscribedTags Use After Free Memory Corruption Exploit
2015-08-19 00:00:00
Flash Broker-Based Sandbox Escape via Forward Slash Instead of Backslash Exploit
2015-08-19 00:00:00
zdi
zdi
(Pwn2Own) Adobe Flash Player BrokerCreateFile Broker Method Path Traversal Sandbox Escape Vulnerability
2015-05-12 00:00:00
googleprojectzero
googleprojectzero
One Perfect Bug: Exploiting Type Confusion in Flash
2015-07-20 00:00:00
Attacking ECMAScript Engines with Redefinition
2015-08-17 00:00:00
metasploit
metasploit
Adobe Flash Player ShaderJob Buffer Overflow
2015-06-18 17:36:14
packetstorm
packetstorm
Adobe Flash Player ShaderJob Buffer Overflow
2015-06-19 00:00:00
exploitdb
exploitdb
Adobe Flash Player - ShaderJob Buffer Overflow (Metasploit)
2015-06-24 00:00:00
threatpost
threatpost
Angler Exploit Kit Exploiting New Adobe Vulnerability, Dropping Cryptowall 3.0
2015-05-28 13:57:47
freebsd
freebsd
Adobe Flash Player -- critical vulnerabilities
2015-04-14 00:00:00
archlinux
archlinux
flashplugin: multiple issues
2015-04-17 00:00:00

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.974 High

EPSS

Percentile

99.9%

JSON
Related for E206DF57-F97B-11E4-B799-C485083CA99C
nessus28openvas15suse7altlinux4mageia2redhat2gentoo2securityvulns1kaspersky2prion18ubuntucve18cve18checkpoint_advisories17hackerone2zdt7zdi1googleprojectzero2metasploit1packetstorm1exploitdb1threatpost1freebsd1archlinux1