Tenable9044.PRMAdobe AIR < 20.0.0.233 Multiple Vulnerabilities (APSB16-01)
Versions of Adobe AIR prior to 20.0.0.233 are outdated and thus unpatched for the following vulnerabilities :
- A type confusion error exists that a remote attacker can exploit to execute arbitrary code. (CVE-2015-8644)
- An integer overflow condition exists that a remote attacker can exploit to execute arbitrary code. (CVE-2015-8651)
- Multiple use-after-free errors exist that a remote attacker can exploit to execute arbitrary code. (CVE-2015-8634, CVE-2015-8635, CVE-2015-8638, CVE-2015-8639, CVE-2015-8640, CVE-2015-8641, CVE-2015-8642, CVE-2015-8643, CVE-2015-8646, CVE-2015-8647, CVE-2015-8648, CVE-2015-8649, CVE-2015-8650)
- Multiple memory corruption issues exist that allow a remote attacker to execute arbitrary code. (CVE-2015-8459, CVE-2015-8460, CVE-2015-8636, CVE-2015-8645)
Binary data 9044.prmReferences
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8459
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8460
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8634
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8635
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8636
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8638
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8639
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8640
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8641
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8642
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8643
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8644
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8645
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8646
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8647
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8648
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8649
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8650
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8651
www.nessus.org/u?fc0b8343
helpx.adobe.com/security/products/flash-player/apsb16-01.html
Related
