Versions of Adobe Flash player equal or prior to 16.0.0.296 are outdated and thus unpatched for the following vulnerabilities :
Several use-after-free errors exist that allow arbitrary code execution. (CVE-2015-0313, CVE-2015-0315, CVE-2015-0320, CVE-2015-0322)
Several memory corruption errors exist that allow arbitrary code execution. (CVE-2015-0314, CVE-2015-0316, CVE-2015-0318, CVE-2015-0321, CVE-2015-0329, CVE-2015-0330)
Several type confusion errors exist that allow arbitrary code execution. (CVE-2015-0317, CVE-2015-0319)
Several heap-based buffer overflow errors exist that allow arbitrary code execution. (CVE-2015-0323, CVE-2015-0327)
A buffer overflow error exists that allows arbitrary code execution. (CVE-2015-0324
Several NULL pointer dereference errors exist that have unspecified impacts. (CVE-2015-0325, CVE-2015-0326, CVE-2015-0328).
A use-after-free error exists within the processing of invalid m3u8 playlists. A remote attacker, with a specially crafted m3u8 playlist file, can force a dangling pointer to be reused after it has been freed, allowing the execution of arbitrary code. (CVE-2015-0331)
Binary data 8660.prm
Vendor | Product | Version | CPE |
---|---|---|---|
adobe | flash_player | cpe:/a:adobe:flash_player |
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0313
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0314
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0315
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0316
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0317
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0318
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0319
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0320
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0321
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0322
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0323
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0324
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0325
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0326
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0327
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0328
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0329
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0330
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0331
helpx.adobe.com/security/products/flash-player/apsb15-04.html
www.nessus.org/u?0cb17c10
www.zerodayinitiative.com/advisories/ZDI-15-047