Lucene search
AbdulAziz Hariri - HPE Zero Day InitiativeZDI-15-660HistoryMar 02, 2016 - 12:00 a.m.
Adobe Flash MPEG Out-Of-Bounds Read Remote Code Execution Vulnerability
2016-03-0200:00:00
AbdulAziz Hariri - HPE Zero Day Initiative
www.zerodayinitiative.com
15
0.027 Low
EPSS
Percentile
90.6%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within MPEG-4 parsing. A specially crafted MP4 file can force Adobe Flash to read memory past the end of an allocated object. An attacker could leverage this vulnerability to execute code under the context of the current process.
Related
ubuntucve
ubuntucve
prion
prion
Memory corruption
2016-03-04 23:59:00
Out-of-bounds
2016-03-04 23:59:00
Out-of-bounds
2016-03-04 23:59:00
cvelist
cvelist
nvd
nvd
cve
cve
openvas
openvas
Adobe Air Multiple Vulnerabilities (Dec 2015) - Windows
2015-12-10 00:00:00
Adobe Flash Player Multiple Vulnerabilities (Dec 2015) - Windows
2015-12-10 00:00:00
Adobe Air Multiple Vulnerabilities (Dec 2015) - Mac OS X
2015-12-10 00:00:00
nessus
nessus
RHEL 5 / 6 : flash-plugin (RHSA-2015:2593)
2015-12-10 00:00:00
Adobe Flash Player <= 19.0.0.245 Multiple Vulnerabilities (APSB15-32)
2015-12-08 00:00:00
Adobe AIR < 20.0.0.204 Multiple Vulnerabilities (APSB15-32)
2016-01-08 00:00:00
redhat
redhat
(RHSA-2015:2593) Critical: flash-plugin security update
2015-12-09 00:00:00