Lucene search

Basic search
Lucene search
Search by product

Vendors

Products

Gentoo FoundationGLSA-201504-07

HistoryApr 17, 2015 - 12:00 a.m.

Adobe Flash Player: Multiple vulnerabilities

2015-04-1700:00:00

Gentoo Foundation

security.gentoo.org

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.975 High

EPSS

Percentile

100.0%

JSON

Background

The Adobe Flash Player is a renderer for the SWF file format, which is commonly used to provide interactive websites.

Description

Multiple vulnerabilities have been discovered in Adobe Flash Player. Please review the CVE identifiers referenced below for details.

Impact

A remote attacker could possibly execute arbitrary code with the privileges of the process or cause a Denial of Service condition.

Workaround

There is no known workaround at this time.

Resolution

All Adobe Flash Player users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose
 "&gt;=www-plugins/adobe-flash-11.2.202.457"

OSVersionArchitecturePackageVersionFilename
Gentooanyallwww-plugins/adobe-flash< 11.2.202.457UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Gentoo	any	all	www-plugins/adobe-flash	< 11.2.202.457	UNKNOWN

nessus 27

openvas 10

redhat 1

altlinux 4

freebsd 2

suse 7

mageia 2

archlinux 1

prion 22

cve 22

ubuntucve 22

attackerkb 3

checkpoint_advisories 21

hackerone 3

zdi 3

thn 1

kaspersky 3

exploitpack 1

zdt 3

cisa_kev 1

metasploit 2

packetstorm 2

exploitdb 3

threatpost 2

googleprojectzero 1

gentoo 1

securityvulns 1

nessus

Adobe AIR < 17.0.0.172 Multiple Vulnerabilities (APSB15-06)

2015-07-24 00:00:00

Flash Player < 13.0.0.281 / 17.0.0.169 Multiple Vulnerabilities (APSB15-06)

2015-07-24 00:00:00

SuSE 11.3 Security Update : flash-player (SAT Patch Number 10615)

2015-04-16 00:00:00

openvas

SUSE: Security Advisory for Adobe (SUSE-SU-2015:0722-1)

2015-10-16 00:00:00

Mageia: Security Advisory (MGASA-2015-0155)

2022-01-28 00:00:00

Gentoo Security Advisory GLSA 201504-07

2015-09-29 00:00:00

redhat

(RHSA-2015:0813) Critical: flash-plugin security update

2015-04-15 00:00:00

altlinux

Security fix for the ALT Linux 6 package adobe-flash-player version 3:11-alt43

2015-04-15 00:00:00

Security fix for the ALT Linux 7 package adobe-flash-player version 3:11-alt43

2015-04-15 00:00:00

Security fix for the ALT Linux 7 package adobe-flash-player version 3:11-alt44

2015-05-15 00:00:00

freebsd

Adobe Flash Player -- critical vulnerabilities

2015-04-14 00:00:00

Adobe Flash Player -- critical vulnerabilities

2015-05-12 00:00:00

suse

Security update for flash-player (important)

2015-04-16 00:04:48

Security update for Adobe Flash Player (important)

2015-04-15 13:05:12

Security update for Adobe Flash Player (important)

2015-04-15 10:04:46

mageia

Updated flash-player-plugin packages fix security vulnerabilities

2015-04-15 12:01:28

Updated flash-player-plugin packages fix security vulnerabilities

2015-05-12 22:37:48

archlinux

flashplugin: multiple issues

2015-04-17 00:00:00

prion

Memory corruption

2015-04-14 22:59:00

Memory corruption

2015-04-14 22:59:00

Memory corruption

2015-04-14 22:59:00

cve

CVE-2015-0352

2015-04-14 22:59:00

CVE-2015-0354

2015-04-14 22:59:00

CVE-2015-3042

2015-04-14 22:59:00

ubuntucve

CVE-2015-3038

2015-04-14 00:00:00

CVE-2015-0347

2015-04-14 00:00:00

CVE-2015-0353

2015-04-14 00:00:00

attackerkb

CVE-2015-3043

2015-04-14 00:00:00

CVE-2015-3038

2015-04-14 00:00:00

CVE-2015-0355

2015-04-14 00:00:00

checkpoint_advisories

Adobe Flash Use After Free Code Execution (APSB15-06: CVE-2015-0349; CVE-2015-3039)

2015-04-15 00:00:00

Adobe Flash Player Memory Corruption (APSB15-06: CVE-2015-0350)

2015-04-15 00:00:00

Adobe Flash Player Buffer Overflow (APSB15-06: CVE-2015-0348)

2015-04-15 00:00:00

hackerone

Internet Bug Bounty: Double free vulnerability in Flash Player Settings Manager (CVE-2015-0346)

2015-04-15 09:39:23

Internet Bug Bounty: Flash Player information disclosure (etc.) CVE-2015-3044, PSIRT-3298

2015-05-21 19:39:15

Internet Bug Bounty: Internet-based attacker can run Flash apps in local sandboxes by using special URL schemes (PSIRT-3299, CVE-2015-3079)

2015-06-30 14:33:56

zdi

Adobe Flash Player AVSource Memory Corruption Remote Code Execution Vulnerability

2015-04-15 00:00:00

Adobe Flash Player AS2 ConvolutionFilter Use-After-Free Remote Code Execution Vulnerability

2015-07-08 00:00:00

(Pwn2Own) Adobe Flash Player AS3 ConvolutionFilter Use-After-Free Remote Code Execution Vulnerability

2015-04-15 00:00:00

thn

Zero-Day Flash Player Exploit Disclosed in 'Hacking Team' Data Dump

2015-07-07 05:49:00

kaspersky

KLA10547 Multiple vulnerabilities in Adobe Flash Player

2015-04-14 00:00:00

KLA10576 Flash Player update for Google Chrome

2015-05-12 00:00:00

KLA10574 Multiple vulnerabilities in Adobe Flash Player

2015-05-12 00:00:00

exploitpack

Adobe Flash - Heap Buffer Overflow Loading .FLV File with Nellymoser Audio Codec

2015-08-19 00:00:00

zdt

Adobe Flash Player Nellymoser Audio Decoding Buffer Overflow Exploit

2015-07-09 00:00:00

Flash PCRE Regex Compilation Zero-Length Assertion Arbitrary Bytecode Execution Exploit

2015-08-19 00:00:00

Adobe Flash Player domainMemory ByteArray Use After Free Exploit

2015-05-08 00:00:00

cisa_kev

Adobe Flash Player Memory Corruption Vulnerability

2022-03-03 00:00:00

metasploit

Adobe Flash Player domainMemory ByteArray Use After Free

2015-05-07 22:00:00

Adobe Flash Player Nellymoser Audio Decoding Buffer Overflow

2015-07-01 18:13:57

packetstorm

Adobe Flash Player domainMemory ByteArray Use After Free

2015-05-07 00:00:00

Adobe Flash Player Nellymoser Audio Decoding Buffer Overflow

2015-07-03 00:00:00

exploitdb

Adobe Flash - Heap Buffer Overflow Loading '.FLV' File with Nellymoser Audio Codec

2015-08-19 00:00:00

Adobe Flash Player - domainMemory ByteArray Use-After-Free (Metasploit)

2015-05-08 00:00:00

Adobe Flash Player - Nellymoser Audio Decoding Buffer Overflow (Metasploit)

2015-07-08 00:00:00

threatpost

Angler Exploit Kit Exploiting New Adobe Vulnerability, Dropping Cryptowall 3.0

2015-05-28 13:57:47

April 2015 Microsoft Patch Tuesday Security Bulletins

2015-04-14 14:49:25

googleprojectzero

Attacking ECMAScript Engines with Redefinition

2015-08-17 00:00:00

gentoo

Adobe Flash Player: Multiple vulnerabilities

2015-05-31 00:00:00

securityvulns

Adobe Flash Player multiple security vulnerabilities

2015-05-13 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.975 High

EPSS

Percentile

100.0%

JSON

Related for GLSA-201504-07