Linux Distros Unpatched Vulnerability : CVE-2019-11712

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - POST requests made by NPAPI plugins, such as Flash, that receive a status 308 redirect response can bypass CORS requirements. This can allow an attacker to...

flash-plugin: multiple code execution issues fixed in APSB15-32

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute...

Oliver Debon Flash plug-in vulnerable to buffer overflow processing incorrectly formatted sound file

Overview When passed an incorrectly formatted sound file, the Oliver Debon freeware Flash plug-in is reportedly vulnerable to a buffer overflow. Description The DefineSound tag in a sound file passes data to a Flash plug-in. If this tag specifies fewer samples than are actually present in the dat...

Flash plugin write-overflow

Hello all, I'm learning more and more about plugins. I have recreated the write-overflow I found 6 months ago. The affected plugins: There are two primary sources for Flash plugins. - Macromedia provides the official version. They are NOT affected by this latest defect. - Olivier Debon provides a...