174 matches found
Adobe Flash Player Memory Corruption Arbitrary Code Execution Vulnerability (CNVD-2015-08248)
Adobe Flash Player is a widely used, proprietary multimedia program player. It was originally written by Macromedia and continued to be developed and distributed by Adobe after Macromedia was acquired by Adobe. A memory corruption vulnerability exists in Adobe Flash Player's handling of special S...
Adobe Flash Player Same-Origin Policy Bypass Information Disclosure Vulnerability (CNVD-2015-06679)
Adobe Flash Player is a Flash file handling program. Adobe Flash Player suffers from an unspecified same-origin policy bypass vulnerability. This allows remote attackers to construct malicious SWF content and trick users into parsing it, which could lead to sensitive information...
Adobe Flash Player Buffer Overflow Vulnerability (CNVD-2015-06675)
Adobe Flash Player is a Flash file handling program. A buffer overflow vulnerability exists in Adobe Flash Player. This allows remote attackers to construct malicious SWF content and trick users into parsing it, which could execute arbitrary code...
Adobe Flash Player Memory Misreference Vulnerability (CNVD-2015-06680)
Adobe Flash Player is a Flash file handling program. A memory misreference vulnerability exists in Adobe Flash Player. This allows remote attackers to construct malicious SWF content and trick users into parsing it to execute arbitrary code...
Adobe Flash Player Memory Misreference Vulnerability (CNVD-2015-06681)
Adobe Flash Player is a Flash file handling program. A memory misreference vulnerability exists in Adobe Flash Player. This allows remote attackers to construct malicious SWF content and trick users into parsing it, which could execute arbitrary code...
Adobe Flash Player Memory Corruption Vulnerability (CNVD-2015-06670)
Adobe Flash Player is a Flash file handling program. An unspecified memory corruption vulnerability exists in Adobe Flash Player. This allows remote attackers to construct malicious SWF content and trick users into parsing it, which could execute arbitrary code...
Adobe Flash Player Memory Corruption Vulnerability (CNVD-2015-06668)
Adobe Flash Player is a Flash file handling program. An unspecified memory corruption vulnerability exists in Adobe Flash Player. This allows remote attackers to construct malicious SWF content and trick users into parsing it, which could execute arbitrary code...
Adobe Flash Player Memory Misreference Vulnerability (CNVD-2015-06682)
Adobe Flash Player is a Flash file handling program. A memory misreference vulnerability exists in Adobe Flash Player. This allows remote attackers to construct malicious SWF content and trick users into parsing it, which could execute arbitrary code...
Gratipay: implement a cross-domain policy for Adobe products
The suggestion was to set X-Permitted-Cross-Domain-Policies: master-only. From Adobe per: Normally a meta-policy is declared in the master policy file, but for those who can’t write to the root directory, they can also declare a meta-policy using the X-Permitted-Cross-Domain-Policies HTTP respons...
SUSE SLED11 Security Update : flash-player (SUSE-SU-2015:1258-1)
flash-player was updated to fix two security issues. These security issues were fixed : - CVE-2015-5123: Use-after-free vulnerability in the BitmapData class in the ActionScript 3 AS3 implementation in Adobe Flash Player allowed remote attackers to execute arbitrary code or cause a denial of...
Design/Logic Flaw
Use-after-free vulnerability in the DisplayObject class in the ActionScript 3 AS3 implementation in Adobe Flash Player 13.x through 13.0.0.302 on Windows and OS X, 14.x through 18.0.0.203 on Windows and OS X, 11.x through 11.2.202.481 on Linux, and 12.x through 18.0.0.204 on Linux Chrome...
CVE-2015-5122
Use-after-free vulnerability in the DisplayObject class in the ActionScript 3 AS3 implementation in Adobe Flash Player 13.x through 13.0.0.302 on Windows and OS X, 14.x through 18.0.0.203 on Windows and OS X, 11.x through 11.2.202.481 on Linux, and 12.x through 18.0.0.204 on Linux Chrome...
CVE-2015-5122
Use-after-free vulnerability in the DisplayObject class in the ActionScript 3 AS3 implementation in Adobe Flash Player 13.x through 13.0.0.302 on Windows and OS X, 14.x through 18.0.0.203 on Windows and OS X, 11.x through 11.2.202.481 on Linux, and 12.x through 18.0.0.204 on Linux Chrome...
CVE-2015-5123
Use-after-free vulnerability in the BitmapData class in the ActionScript 3 AS3 implementation in Adobe Flash Player 13.x through 13.0.0.302 on Windows and OS X, 14.x through 18.0.0.203 on Windows and OS X, 11.x through 11.2.202.481 on Linux, and 12.x through 18.0.0.204 on Linux Chrome installatio...
Design/Logic Flaw
Use-after-free vulnerability in the ByteArray class in the ActionScript 3 AS3 implementation in Adobe Flash Player 13.x through 13.0.0.296 and 14.x through 18.0.0.194 on Windows and OS X and 11.x through 11.2.202.468 on Linux allows remote attackers to execute arbitrary code or cause a denial of...
CVE-2015-5119
Use-after-free vulnerability in the ByteArray class in the ActionScript 3 AS3 implementation in Adobe Flash Player 13.x through 13.0.0.296 and 14.x through 18.0.0.194 on Windows and OS X and 11.x through 11.2.202.468 on Linux allows remote attackers to execute arbitrary code or cause a denial of...
Adobe Flash ByteArray Use-After-Free
Use-after-free vulnerability in the ByteArray class in the ActionScript 3 AS3 implementation in Adobe Flash Player 13.x through 13.0.0.296 and 14.x through 18.0.0.194 on Windows and OS X and 11.x through 11.2.202.468 on Linux allows remote attackers to execute arbitrary code or cause a denial of...
Adobe Flash Player Memory Error Referencing Arbitrary Code Execution Vulnerability (CNVD-2015-03798)
Adobe Flash Player is a Flash file handling program. A memory misreference vulnerability exists in Adobe Flash Player, which allows remote attackers to construct malicious SWF content and trick users into parsing it, which could execute arbitrary code...
Adobe Flash Player ASLR Security Protection Bypass Vulnerability
Adobe Flash Player is a Flash file handling program. Adobe Flash Player suffers from an ASLR security protection bypass that allows remote attackers to construct malicious SWF content and trick users into parsing it, which can be used to bypass restrictions and perform malicious actions...
Adobe Flash Player Memory Corruption Arbitrary Code Execution Vulnerability
Adobe Flash Player is a Flash file handling program. A memory corruption vulnerability exists in Adobe Flash Player, which allows remote attackers to construct malicious SWF content that can be parsed by a user to execute arbitrary code...