Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
srcinciteSteven Seeley (mr_me) of Source InciteSRC-2018-0024
HistoryApr 27, 2018 - 12:00 a.m.

SRC-2018-0024 : Adobe Flash Player SWF Parsing Out-of-Bounds Read Information Disclosure Vulnerability

2018-04-2700:00:00
Steven Seeley (mr_me) of Source Incite
srcincite.io
11

0.004 Low

EPSS

Percentile

74.7%

JSON

Vulnerability Details:

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Adobe Flash Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

The specific flaw exists within the parsing of SWF files. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated object. An attacker can leverage this in conjunction with other vulnerabilities to execute code in the context of the current process.

Affected Vendors:

Adobe

Affected Products:

Flash Player

Vendor Response:

Adobe has issued an update to correct these vulnerabilities. More details can be found at:
<https://helpx.adobe.com/security/products/flash-player/apsb18-24.html&gt;

Related

checkpoint_advisories 1
redhatcve 1
prion 1
cvelist 1
cve 1
nessus 6
mscve 1
openvas 8
adobe 1
threatpost 2
mageia 1
redhat 1
freebsd 1
kaspersky 1
trendmicroblog 1
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Out-of-bounds read (APSB18-24: CVE-2018-5008)
2018-07-10 00:00:00
redhatcve
redhatcve
CVE-2018-5008
2018-07-10 16:54:32
prion
prion
Out-of-bounds
2018-07-20 19:29:00
cvelist
cvelist
CVE-2018-5008
2018-07-20 19:00:00
cve
cve
CVE-2018-5008
2018-07-20 19:29:00
nessus
nessus
KB4338832: Security update for Adobe Flash Player (July 2018)
2018-07-10 00:00:00
Adobe Flash Player for Mac <= 30.0.0.113 (APSB18-24)
2018-07-10 00:00:00
Flash Player < 30.0.0.134 Multiple Vulnerabilities (APSB18-24)
2019-03-20 00:00:00
mscve
mscve
July 2018 Adobe Flash Security Update
2018-07-10 07:00:00
openvas
openvas
Adobe Flash Player Security Updates (APSB18-24) - Windows
2018-07-11 00:00:00
Adobe Flash Player Security Updates (APSB18-24) - Mac OS X
2018-07-11 00:00:00
Microsoft IE And Microsoft Edge Flash Player Multiple Vulnerabilities (APSB18-24)
2018-07-11 00:00:00
adobe
adobe
APSB18-24 Security updates available for Adobe Flash Player
2018-07-10 00:00:00
threatpost
threatpost
Sen. Wyden Urges Government Ban on Adobe Flash
2018-07-26 15:50:35
Adobe Issues Over 100 Patches for Flash, Acrobat and Reader
2018-07-10 16:37:56
mageia
mageia
Updated flash-player-plugin packages fix security vulnerabilities
2018-07-13 22:01:19
redhat
redhat
(RHSA-2018:2175) Critical: flash-plugin security update
2018-07-11 16:21:43
freebsd
freebsd
Flash Player -- multiple vulnerabilities
2018-07-10 00:00:00
kaspersky
kaspersky
KLA11284 Multiple vulnerabilities in Adobe Flash Player
2018-07-10 00:00:00
trendmicroblog
trendmicroblog
Zero-Day Coverage Update – Week of July 16, 2018
2018-07-20 15:24:42

0.004 Low

EPSS

Percentile

74.7%

JSON
Related for SRC-2018-0024
checkpoint_advisories1redhatcve1prion1cvelist1cve1nessus6mscve1openvas8adobe1threatpost2mageia1redhat1freebsd1kaspersky1trendmicroblog1