16 matches found
Mageia: Security Advisory (MGASA-2014-0448)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2014-8440
creationtimestamp| type| source ---|---|--- 2015-05-01 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/36880 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/adobeflashuncompresszlibuninitialized.rb...
Adobe Flash Player UncompressViaZlibVariant Uninitialized Memory Exploit
This Metasploit module exploits an uninitialized memory vulnerability in Adobe Flash Player. The vulnerability occurs in the ByteArray::UncompressViaZlibVariant method, which fails to initialize allocated memory. When using a correct memory layout this vulnerability leads to a ByteArray object...
Adobe Flash Player UncompressViaZlibVariant Uninitialized Memory
This module exploits an uninitialized memory vulnerability in Adobe Flash Player. The vulnerability occurs in the ByteArray::UncompressViaZlibVariant method, which fails to initialize allocated memory. When using a correct memory layout this vulnerability leads to a ByteArray object corruption,...
Adobe Flash Player Memory Corruption (APSB14-24: CVE-2014-8440)
A memory corruption vulnerability has been reported in Adobe Flash Player. The vulnerability is due to an error in Adobe Flash Player while parsing a specially crafted SWF file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted SWF file...
Adobe Releases Emergency Flash Player Patch
Adobe today revised a security bulletin it released more than a month ago, adding a patch for a code-execution vulnerability in Flash Player already included in some exploit kits. French researcher Kafeine found the exploits in the Angler and Nuclear kits less than a week after Adobe released an...
GLSA-201411-06 : Adobe Flash Player: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201411-06 Adobe Flash Player: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Adobe Flash Player. Please review the CVE identifiers referenced below for details. Impact : A remote attacker could possibly...
Angler Exploit Kit Adds New Flash Exploit
Exploit kit authors are nothing if not opportunistic, and they know a prime opportunity when they see one. Adobe Flash bugs fit that description nicely, and the people behind the Angler exploit kit already are exploiting one of the Flash bugs patched last week in the kit’s arsenal. This is a comm...
openSUSE Security Update : flash-player (openSUSE-SU-2014:1444-1)
flash-player was updated to version 11.2.202.418 to fix 18 security issues. These security issues were fixed : - Memory corruption vulnerabilities that could lead to code execution CVE-2014-0576, CVE-2014-0581, CVE-2014-8440, CVE-2014-8441. - Use-after-free vulnerabilities that could lead to code...
SuSE 11.3 Security Update : flash-player (SAT Patch Number 9958)
flash-player was updated to version 11.2.202.418 to fix 18 security issues : - Memory corruption vulnerabilities that could lead to code execution. CVE-2014-0576 / CVE-2014-0581 / CVE-2014-8440 / CVE-2014-8441 - Use-after-free vulnerabilities that could lead to code execution. CVE-2014-0573 /...
Adobe AIR Multiple Vulnerabilities (APSB14-24) - Mac OS X
Adobe AIR is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:flashplayer"; ifdescription...
flashplugin: remote code execution
These updates resolve memory corruption vulnerabilities that could lead to code execution CVE-2014-0576, CVE-2014-0581, CVE-2014-8440, CVE-2014-8441. These updates resolve use-after-free vulnerabilities that could lead to code execution CVE-2014-0573, CVE-2014-0588, CVE-2014-8438. These updates...
RHEL 5 / 6 : flash-plugin (RHSA-2014:1852)
The remote Redhat Enterprise Linux 5 / 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2014:1852 advisory. The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. This update fixes multiple...
MS KB3004150: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer
The remote host is missing KB3004150. It is, therefore, affected by the following vulnerabilities : - Multiple memory corruption vulnerabilities allow an attacker to execute arbitrary code. CVE-2014-0576, CVE-2014-0581, CVE-2014-8440, CVE-2014-8441 - Multiple use-after-free vulnerabilities could...
Flash Player For Mac <= 15.0.0.189 Multiple Vulnerabilities (APSB14-24)
According to its version, the installation of Adobe Flash Player installed on the remote Mac OS X host is equal or prior to 15.0.0.189. It is, therefore, affected by the following vulnerabilities : - Multiple memory corruption vulnerabilities allow an attacker to execute arbitrary code...
CVE-2014-8440
CVE-2014-8440 is a memory‑corruption vulnerability in Adobe Flash Player’s ByteArray::UncompressViaZlibVariant that can lead to arbitrary code execution or crash via uninitialized memory. Affected products/versions (per initial description): Flash Player before 13.0.0.252 and 14.x and 15.x before...