Lucene search
K

50 matches found

CVE
CVE
added 2016/12/15 6:31 a.m.80 views

CVE-2016-7874

CVE-2016-7874 is a memory corruption vulnerability in Adobe Flash Player (earlier than 24.0.0.186, e.g., 23.0.0.207 and prior) that is triggered in the NetConnection class when handling proxy types, potentially allowing arbitrary code execution. Connected sources corroborate an exploitable memory...

9.3CVSS8.8AI score0.04978EPSS
Exploits0References8Affected Software1
RedHat Linux
RedHat Linux
added 2016/12/14 1:2 p.m.12 views

flash-plugin: multiple code execution issues fixed in APSB16-39

Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable memory corruption vulnerability in the NetConnection class when handling the proxy types. Successful exploitation could lead to arbitrary code execution...

9.3CVSS6.1AI score0.04978EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2016/12/14 12:0 a.m.4 views

PT-2016-2954 · Adobe +3 · Flash Player +3

Name of the Vulnerable Software and Affected Versions: Adobe Flash Player versions 23.0.0.207 and earlier Adobe Flash Player versions 11.2.202.644 and earlier Description: The issue is caused by a buffer overflow in the NetConnection class of the Flash Player platform when handling proxy types...

10CVSS9.3AI score0.18786EPSS
Exploits0References115
RedhatCVE
RedhatCVE
added 2016/12/13 3:29 p.m.33 views

CVE-2016-7874

Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable memory corruption vulnerability in the NetConnection class when handling the proxy types. Successful exploitation could lead to arbitrary code execution...

9.3CVSS5.3AI score0.04978EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2016/12/13 3:29 p.m.22 views

CVE-2016-7879

Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the NetConnection class when handling an attached script object. Successful exploitation could lead to arbitrary code execution...

8.8CVSS3.6AI score0.07679EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2016/12/13 12:0 a.m.31 views

Adobe Flash NetConnection Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

6.8CVSS1.9AI score0.07679EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2016/12/13 12:0 a.m.2 views

PT-2016-2949 · Adobe +3 · Flash Player +3

Name of the Vulnerable Software and Affected Versions: Adobe Flash Player versions 23.0.0.207 and earlier Adobe Flash Player versions 11.2.202.644 and earlier Description: The issue is related to an exploitable use after free vulnerability in the NetConnection class when handling an attached scri...

10CVSS9.2AI score0.18786EPSS
Exploits0References117
OSV
OSV
added 2016/04/09 1:59 a.m.3 views

CVE-2016-1015

Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code by overriding NetConnection object properties to leverage an unspecified "type confusion," a different vulnerability than...

8.8CVSS7.6AI score0.07133EPSS
Exploits0References8
Prion
Prion
added 2016/04/09 1:59 a.m.22 views

Type confusion

Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code by overriding NetConnection object properties to leverage an unspecified "type confusion," a different vulnerability than...

9.3CVSS9.8AI score0.22487EPSS
Exploits0References8Affected Software5
OSV
OSV
added 2016/04/09 1:59 a.m.3 views

UBUNTU-CVE-2016-1015

Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code by overriding NetConnection object properties to leverage an unspecified "type confusion," a different vulnerability than...

8.8CVSS7.5AI score0.07133EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2016/04/09 12:0 a.m.58 views

CVE-2016-1015

Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code by overriding NetConnection object properties to leverage an unspecified “type confusion,” a different vulnerability than...

10CVSS9.7AI score0.22487EPSS
In wildExploits0References9
RedHat Linux
RedHat Linux
added 2016/04/08 12:55 p.m.7 views

flash-plugin: multiple code execution issues fixed in APSB16-10

Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to execute arbitrary code by overriding NetConnection object properties to leverage an unspecified "type confusion," a different vulnerability than...

9.3CVSS6.2AI score0.07133EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2016/04/08 12:0 a.m.4 views

PT-2016-1753 · Adobe +3 · Flash Player +3

Name of the Vulnerable Software and Affected Versions: Adobe Flash Player versions prior to 18.0.0.343 Adobe Flash Player versions 19.x through 21.x prior to 21.0.0.213 on Windows and OS X Adobe Flash Player versions prior to 11.2.202.616 on Linux Description: The issue allows attackers to execut...

10CVSS8.6AI score0.94354EPSS
Exploits19References180
Zero Day Initiative
Zero Day Initiative
added 2016/04/08 12:0 a.m.34 views

(Pwn2Own) Adobe Flash AS2 NetConnection Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the NetConnection...

6.8CVSS3.5AI score0.07133EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2015/11/26 12:0 a.m.5 views

The vulnerabilities of Adobe Integrated Runtime and Flash Player software allow a perpetrator to execute arbitrary code.

The vulnerability of Adobe Integrated Runtime and Flash Player programs is related to type confusion errors. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely, due to the use of type confusion in the implementation of the NetConnection object...

9.3CVSS6AI score0.06171EPSS
Exploits0References3Affected Software2
NVD
NVD
added 2015/11/11 12:59 p.m.14 views

CVE-2015-7659

Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before 19.0.0.241, and Adobe AIR SDK & Compiler before 19.0.0.241 allow attackers to execute arbitrary code by leveraging an unspecified...

9.3CVSS7.3AI score0.06171EPSS
Exploits0References8
Prion
Prion
added 2015/11/11 12:59 p.m.12 views

Type confusion

Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before 19.0.0.241, and Adobe AIR SDK & Compiler before 19.0.0.241 allow attackers to execute arbitrary code by leveraging an unspecified...

9.3CVSS7.9AI score0.06171EPSS
Exploits0References8Affected Software4
OSV
OSV
added 2015/11/11 12:59 p.m.3 views

UBUNTU-CVE-2015-7659

Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before 19.0.0.241, and Adobe AIR SDK & Compiler before 19.0.0.241 allow attackers to execute arbitrary code by leveraging an unspecified...

9.3CVSS6.2AI score0.06171EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2015/11/11 11:21 a.m.4 views

flash-plugin: multiple code execution issues fixed in APSB15-28

Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before 19.0.0.241, and Adobe AIR SDK & Compiler before 19.0.0.241 allow attackers to execute arbitrary code by leveraging an unspecified...

9.3CVSS6.2AI score0.06171EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/11/11 11:21 a.m.13 views

flash-plugin: multiple code execution issues fixed in APSB15-28

Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before 19.0.0.241, and Adobe AIR SDK & Compiler before 19.0.0.241 allow attackers to execute arbitrary code by leveraging an unspecified...

9.3CVSS6.2AI score0.06171EPSS
Exploits0References5
Rows per page
Query Builder