Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
zdtGoogle Security Research1337DAY-ID-25836
HistoryFeb 17, 2016 - 12:00 a.m.

Adobe Flash - Out-of-Bounds Image Read

2016-02-1700:00:00
Google Security Research
0day.today
22

0.44 Medium

EPSS

Percentile

97.4%

JSON

Exploit for multiple platform in category dos / poc

Source: https://code.google.com/p/google-security-research/issues/detail?id=630
 
The attached file can cause an out-of-bounds read of an image. While the bits of the image are null, the width, height and other values can make it a valid pointer. 
 
 
Proof of Concept:
https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/39460.zip

#  0day.today [2018-04-09]  #

Related

checkpoint_advisories 1
cve 14
ubuntucve 14
prion 14
cvelist 14
nvd 14
freebsd 1
nessus 12
kaspersky 2
openvas 12
suse 4
redhat 1
mageia 1
altlinux 2
gentoo 1
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Memory Corruption (APSB16-04: CVE-2016-0965)
2016-02-11 00:00:00
cve
cve
CVE-2016-0967
2016-02-10 20:59:14
CVE-2016-0969
2016-02-10 20:59:16
CVE-2016-0972
2016-02-10 20:59:20
ubuntucve
ubuntucve
CVE-2016-0966
2016-02-10 00:00:00
CVE-2016-0981
2016-02-10 00:00:00
CVE-2016-0978
2016-02-10 00:00:00
prion
prion
Memory corruption
2016-02-10 20:59:00
Memory corruption
2016-02-10 20:59:00
Memory corruption
2016-02-10 20:59:00
cvelist
cvelist
CVE-2016-0964
2016-02-10 20:00:00
CVE-2016-0965
2016-02-10 20:00:00
CVE-2016-0978
2016-02-10 20:00:00
nvd
nvd
CVE-2016-0967
2016-02-10 20:59:14
CVE-2016-0970
2016-02-10 20:59:17
CVE-2016-0972
2016-02-10 20:59:20
freebsd
freebsd
flash -- multiple vulnerabilities
2016-02-09 00:00:00
nessus
nessus
FreeBSD : flash -- multiple vulnerabilities (5d8e56c3-9e67-4d5b-81c9-3a409dfd705f)
2016-02-11 00:00:00
openSUSE Security Update : flash-player (openSUSE-2016-183)
2016-02-11 00:00:00
openSUSE Security Update : flash-player (openSUSE-2016-186)
2016-02-12 00:00:00
kaspersky
kaspersky
KLA10758 Obsolete Adobe Flash Player for Windows
2016-02-09 00:00:00
KLA10756 Arbitrary code execution in Adobe Flash Player & AIR
2016-02-09 00:00:00
openvas
openvas
Adobe Air Multiple Vulnerabilities (Feb 2016) - Mac OS X
2016-02-12 00:00:00
Adobe Flash Player Multiple Vulnerabilities -01 (Feb 2016) - Linux
2016-02-10 00:00:00
Microsoft IE And Microsoft Edge Flash Player Multiple Vulnerabilities (3135782)
2017-03-18 00:00:00
suse
suse
Security update for flash-player (important)
2016-02-11 12:11:42
Security update for flash-player (important)
2016-02-10 13:11:33
Security update for flash-player (important)
2016-02-10 22:11:01
redhat
redhat
(RHSA-2016:0166) Critical: flash-plugin security update
2016-02-10 00:00:00
mageia
mageia
Updated flash-player-plugin packages fix security vulnerabilities
2016-02-09 22:05:34
altlinux
altlinux
Security fix for the ALT Linux 6 package adobe-flash-player version 3:11-alt59
2016-02-11 00:00:00
Security fix for the ALT Linux 7 package adobe-flash-player version 3:11-alt59
2016-02-11 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2016-03-12 00:00:00

0.44 Medium

EPSS

Percentile

97.4%

JSON
Related for 1337DAY-ID-25836
checkpoint_advisories1cve14ubuntucve14prion14cvelist14nvd14freebsd1nessus12kaspersky2openvas12suse4redhat1mageia1altlinux2gentoo1