Lucene search
K

14 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.20 views

Mageia: Security Advisory (MGASA-2015-0043)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.7AI score0.8582EPSS
Exploits5References6
Hacker One
Hacker One
added 2015/02/09 6:36 p.m.46 views

Internet Bug Bounty: Race condition in workers may cause an exploitable double free by abusing bytearray.compress()

The issue occurs while sharing a bytearray between two workers. If one worker calls bytearray.compress while the other uses that bytearray, Flash does not correctly handle the race and may double free the array. Identified as CVE-2015-0312, and reported to Adobe via Chrome VRP:...

9.3CVSS6.3AI score0.07078EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2015/02/01 12:0 a.m.3 views

Adobe Flash Player Double Free (APSB15-03: CVE-2015-0312)

A double free memory vulnerability has been reported in Adobe Flash Player. The issue occurs while sharing a bytearray between two workers. If one worker calls bytearray.compress while the other uses that bytearray, the code does not handle the race correctly and leads to double free, which can...

9.3CVSS1.3AI score0.07078EPSS
Exploits0
NVD
NVD
added 2015/01/28 10:59 p.m.20 views

CVE-2015-0312

Double free vulnerability in Adobe Flash Player before 13.0.0.264 and 14.x through 16.x before 16.0.0.296 on Windows and OS X and before 11.2.202.440 on Linux allows attackers to execute arbitrary code via unspecified vectors...

9.3CVSS7.5AI score0.07078EPSS
Exploits0References8
OSV
OSV
added 2015/01/28 10:59 p.m.3 views

UBUNTU-CVE-2015-0312

Double free vulnerability in Adobe Flash Player before 13.0.0.264 and 14.x through 16.x before 16.0.0.296 on Windows and OS X and before 11.2.202.440 on Linux allows attackers to execute arbitrary code via unspecified vectors...

9.3CVSS6.2AI score0.07078EPSS
Exploits0References4
CVE
CVE
added 2015/01/28 10:0 p.m.128 views

CVE-2015-0312

Adobe Flash Player contains a double-free vulnerability (CVE-2015-0312) reported to occur when sharing a bytearray between two workers, where one worker calls bytearray.compress() and another uses the same object. The issue can lead to arbitrary code execution and is associated with Adobe’s APSB1...

9.3CVSS7.5AI score0.07078EPSS
Exploits0References8Affected Software1
Tenable Nessus
Tenable Nessus
added 2015/01/28 12:0 a.m.46 views

RHEL 5 / 6 : flash-plugin (RHSA-2015:0094)

An updated Adobe Flash Player package that fixes multiple security issues is now available for Red Hat Enterprise Linux 5 and 6 Supplementary. Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detail...

10CVSS9AI score0.8582EPSS
Exploits5References9
RedHat Linux
RedHat Linux
added 2015/01/27 9:12 p.m.42 views

Critical: Red Hat Security Advisory: flash-plugin security update

An updated Adobe Flash Player package that fixes multiple security issues is now available for Red Hat Enterprise Linux 5 and 6 Supplementary. Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detail...

10CVSS7.6AI score0.8582EPSS
Exploits5References5
Mageia
Mageia
added 2015/01/27 9:8 p.m.37 views

Updated flash-player-plugin packages fix security vulnerabilities

Adobe Flash Player 11.2.202.440 contains fixes to critical security vulnerabilities found in earlier versions that could cause a crash and potentially allow an attacker to take control of the affected system. Adobe reports that CVE-2015-0311 is already being actively exploited in the wild via...

10CVSS7.1AI score0.8582EPSS
Exploits5References2
Symantec
Symantec
added 2015/01/27 12:0 a.m.35 views

Adobe Flash Player CVE-2015-0312 Double Free Remote Code Execution Vulnerability

Description Adobe Flash Player is prone to an unspecified remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the affected applications. Failed exploit attempts will likely cause a denial-of-service condition...

10CVSS0.6AI score0.07078EPSS
Exploits0Affected Software7
Tenable Nessus
Tenable Nessus
added 2015/01/27 12:0 a.m.34 views

Google Chrome < 40.0.2214.93 Flash Player Multiple Remote Code Execution

The version of Google Chrome installed on the remote Windows host is prior to 40.0.2214.93. It is, therefore, affected by the following vulnerabilities : - A use-after-free error exists that allows an attacker to crash the application or execute arbitrary code. CVE-2015-0311 - A double-free error...

10CVSS7.8AI score0.8582EPSS
Exploits5References4
OpenVAS
OpenVAS
added 2015/01/27 12:0 a.m.25 views

Adobe Flash Player Unspecified Code Execution Vulnerability (Jan 2015) - Linux

Adobe Flash Player is prone to unspecified arbitrary code execution vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

10CVSS10AI score0.8582EPSS
Exploits5References7
Tenable Nessus
Tenable Nessus
added 2015/01/26 12:0 a.m.35 views

Flash Player For Mac <= 16.0.0.287 Unspecified Code Execution (APSA15-01)

According to its version, the Adobe Flash Player installed on the remote Mac OS X host is equal or prior to 16.0.0.287. It is, therefore, affected by the following vulnerabilities : - A use-after-free error exists that allows an attacker to crash the application or execute arbitrary code...

10CVSS9AI score0.8582EPSS
Exploits5References6
Tenable Nessus
Tenable Nessus
added 2015/01/26 12:0 a.m.41 views

Flash Player <= 16.0.0.287 Unspecified Code Execution (APSA15-01 / APSB15-03)

According to its version, the Adobe Flash Player installed on the remote Windows host is equal or prior to 16.0.0.287. It is, therefore, affected by the following vulnerabilities : - A use-after-free error exists that allows an attacker to crash the application or execute arbitrary code...

10CVSS9AI score0.8582EPSS
Exploits5References6
Rows per page
Query Builder