Lucene search
+L

174 matches found

CNVD
CNVD
added 2015/12/13 12:0 a.m.0 views

Adobe Flash Player Memory Corruption Arbitrary Code Execution Vulnerability (CNVD-2015-08248)

Adobe Flash Player is a widely used, proprietary multimedia program player. It was originally written by Macromedia and continued to be developed and distributed by Adobe after Macromedia was acquired by Adobe. A memory corruption vulnerability exists in Adobe Flash Player's handling of special S...

10CVSS7.5AI score0.05307EPSS
Exploits0References1
CNVD
CNVD
added 2015/10/15 12:0 a.m.2 views

Adobe Flash Player Same-Origin Policy Bypass Information Disclosure Vulnerability (CNVD-2015-06679)

Adobe Flash Player is a Flash file handling program. Adobe Flash Player suffers from an unspecified same-origin policy bypass vulnerability. This allows remote attackers to construct malicious SWF content and trick users into parsing it, which could lead to sensitive information...

5CVSS6.8AI score0.04308EPSS
Exploits0References1
CNVD
CNVD
added 2015/10/15 12:0 a.m.1 views

Adobe Flash Player Buffer Overflow Vulnerability (CNVD-2015-06675)

Adobe Flash Player is a Flash file handling program. A buffer overflow vulnerability exists in Adobe Flash Player. This allows remote attackers to construct malicious SWF content and trick users into parsing it, which could execute arbitrary code...

9.3CVSS7.7AI score0.08245EPSS
Exploits0References1
CNVD
CNVD
added 2015/10/15 12:0 a.m.2 views

Adobe Flash Player Memory Misreference Vulnerability (CNVD-2015-06680)

Adobe Flash Player is a Flash file handling program. A memory misreference vulnerability exists in Adobe Flash Player. This allows remote attackers to construct malicious SWF content and trick users into parsing it to execute arbitrary code...

10CVSS7.5AI score0.05908EPSS
Exploits0References1
CNVD
CNVD
added 2015/10/15 12:0 a.m.2 views

Adobe Flash Player Memory Misreference Vulnerability (CNVD-2015-06681)

Adobe Flash Player is a Flash file handling program. A memory misreference vulnerability exists in Adobe Flash Player. This allows remote attackers to construct malicious SWF content and trick users into parsing it, which could execute arbitrary code...

9.3CVSS7.4AI score0.07129EPSS
Exploits0References1
CNVD
CNVD
added 2015/10/15 12:0 a.m.3 views

Adobe Flash Player Memory Corruption Vulnerability (CNVD-2015-06670)

Adobe Flash Player is a Flash file handling program. An unspecified memory corruption vulnerability exists in Adobe Flash Player. This allows remote attackers to construct malicious SWF content and trick users into parsing it, which could execute arbitrary code...

10CVSS7.5AI score0.05908EPSS
Exploits0References1
CNVD
CNVD
added 2015/10/15 12:0 a.m.1 views

Adobe Flash Player Memory Corruption Vulnerability (CNVD-2015-06668)

Adobe Flash Player is a Flash file handling program. An unspecified memory corruption vulnerability exists in Adobe Flash Player. This allows remote attackers to construct malicious SWF content and trick users into parsing it, which could execute arbitrary code...

10CVSS7.5AI score0.07829EPSS
Exploits0References1
CNVD
CNVD
added 2015/10/15 12:0 a.m.2 views

Adobe Flash Player Memory Misreference Vulnerability (CNVD-2015-06682)

Adobe Flash Player is a Flash file handling program. A memory misreference vulnerability exists in Adobe Flash Player. This allows remote attackers to construct malicious SWF content and trick users into parsing it, which could execute arbitrary code...

9.3CVSS7.4AI score0.07982EPSS
Exploits0References1
Hacker One
Hacker One
added 2015/09/28 4:59 p.m.14 views

Gratipay: implement a cross-domain policy for Adobe products

The suggestion was to set X-Permitted-Cross-Domain-Policies: master-only. From Adobe per: Normally a meta-policy is declared in the master policy file, but for those who can’t write to the root directory, they can also declare a meta-policy using the X-Permitted-Cross-Domain-Policies HTTP respons...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/07/20 12:0 a.m.82 views

SUSE SLED11 Security Update : flash-player (SUSE-SU-2015:1258-1)

flash-player was updated to fix two security issues. These security issues were fixed : - CVE-2015-5123: Use-after-free vulnerability in the BitmapData class in the ActionScript 3 AS3 implementation in Adobe Flash Player allowed remote attackers to execute arbitrary code or cause a denial of...

10CVSS9AI score0.93688EPSS
Exploits5References6
Prion
Prion
added 2015/07/14 10:59 a.m.32 views

Design/Logic Flaw

Use-after-free vulnerability in the DisplayObject class in the ActionScript 3 AS3 implementation in Adobe Flash Player 13.x through 13.0.0.302 on Windows and OS X, 14.x through 18.0.0.203 on Windows and OS X, 11.x through 11.2.202.481 on Linux, and 12.x through 18.0.0.204 on Linux Chrome...

10CVSS8.2AI score0.93688EPSS
Exploits5References20Affected Software9
Cvelist
Cvelist
added 2015/07/14 10:0 a.m.34 views

CVE-2015-5122

Use-after-free vulnerability in the DisplayObject class in the ActionScript 3 AS3 implementation in Adobe Flash Player 13.x through 13.0.0.302 on Windows and OS X, 14.x through 18.0.0.203 on Windows and OS X, 11.x through 11.2.202.481 on Linux, and 12.x through 18.0.0.204 on Linux Chrome...

9.8AI score0.93688EPSS
Exploits5References20
ATTACKERKB
ATTACKERKB
added 2015/07/14 12:0 a.m.56 views

CVE-2015-5122

Use-after-free vulnerability in the DisplayObject class in the ActionScript 3 AS3 implementation in Adobe Flash Player 13.x through 13.0.0.302 on Windows and OS X, 14.x through 18.0.0.203 on Windows and OS X, 11.x through 11.2.202.481 on Linux, and 12.x through 18.0.0.204 on Linux Chrome...

10CVSS9.7AI score0.93688EPSS
In wildExploits5References21
ATTACKERKB
ATTACKERKB
added 2015/07/14 12:0 a.m.36 views

CVE-2015-5123

Use-after-free vulnerability in the BitmapData class in the ActionScript 3 AS3 implementation in Adobe Flash Player 13.x through 13.0.0.302 on Windows and OS X, 14.x through 18.0.0.203 on Windows and OS X, 11.x through 11.2.202.481 on Linux, and 12.x through 18.0.0.204 on Linux Chrome installatio...

10CVSS9.7AI score0.18493EPSS
In wildExploits0References15
Prion
Prion
added 2015/07/08 2:59 p.m.32 views

Design/Logic Flaw

Use-after-free vulnerability in the ByteArray class in the ActionScript 3 AS3 implementation in Adobe Flash Player 13.x through 13.0.0.296 and 14.x through 18.0.0.194 on Windows and OS X and 11.x through 11.2.202.468 on Linux allows remote attackers to execute arbitrary code or cause a denial of...

10CVSS8.3AI score0.99344EPSS
Exploits6References16Affected Software1
Cvelist
Cvelist
added 2015/07/08 2:0 p.m.50 views

CVE-2015-5119

Use-after-free vulnerability in the ByteArray class in the ActionScript 3 AS3 implementation in Adobe Flash Player 13.x through 13.0.0.296 and 14.x through 18.0.0.194 on Windows and OS X and 11.x through 11.2.202.468 on Linux allows remote attackers to execute arbitrary code or cause a denial of...

7.7AI score0.99344EPSS
Exploits6References16
ATTACKERKB
ATTACKERKB
added 2015/07/08 12:0 a.m.131 views

Adobe Flash ByteArray Use-After-Free

Use-after-free vulnerability in the ByteArray class in the ActionScript 3 AS3 implementation in Adobe Flash Player 13.x through 13.0.0.296 and 14.x through 18.0.0.194 on Windows and OS X and 11.x through 11.2.202.468 on Linux allows remote attackers to execute arbitrary code or cause a denial of...

10CVSS0.5AI score0.99344EPSS
Exploits6References1
CNVD
CNVD
added 2015/06/10 12:0 a.m.2 views

Adobe Flash Player Memory Error Referencing Arbitrary Code Execution Vulnerability (CNVD-2015-03798)

Adobe Flash Player is a Flash file handling program. A memory misreference vulnerability exists in Adobe Flash Player, which allows remote attackers to construct malicious SWF content and trick users into parsing it, which could execute arbitrary code...

10CVSS7.4AI score0.32432EPSS
Exploits0References1
CNVD
CNVD
added 2015/06/10 12:0 a.m.5 views

Adobe Flash Player ASLR Security Protection Bypass Vulnerability

Adobe Flash Player is a Flash file handling program. Adobe Flash Player suffers from an ASLR security protection bypass that allows remote attackers to construct malicious SWF content and trick users into parsing it, which can be used to bypass restrictions and perform malicious actions...

5CVSS6.9AI score0.02443EPSS
Exploits0References1
CNVD
CNVD
added 2015/06/10 12:0 a.m.2 views

Adobe Flash Player Memory Corruption Arbitrary Code Execution Vulnerability

Adobe Flash Player is a Flash file handling program. A memory corruption vulnerability exists in Adobe Flash Player, which allows remote attackers to construct malicious SWF content that can be parsed by a user to execute arbitrary code...

10CVSS7.6AI score0.96079EPSS
Exploits4References1
Rows per page
Query Builder