PT-2015-1265 · Adobe+3 · Flash Player+3

Publicado

2015-04-14

Atualizado

2017-10-07

CVE-2015-0359

CVSS v2.0

Alta

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Adobe Flash Player versions prior to 13.0.0.281 Adobe Flash Player versions 14.x through 17.x before 17.0.0.169 Adobe Flash Player versions prior to 11.2.202.457 on Linux

Description The issue is caused by a double free vulnerability in the Flash Player platform, allowing a remote attacker to execute arbitrary code. This can be achieved via unspecified vectors. The estimated number of potentially affected devices worldwide is not provided. There is no information about real-world incidents where this issue was exploited.

Recommendations For Adobe Flash Player versions prior to 13.0.0.281, update to version 13.0.0.281 or later. For Adobe Flash Player versions 14.x through 17.x, update to version 17.0.0.169 or later. For Adobe Flash Player versions prior to 11.2.202.457 on Linux, update to version 11.2.202.457 or later.

Exploit

Correção

Double Free

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-415

Identificadores relacionados

ALT-PU-2015-1384

BDU:2015-10287

BDU:2015-10288

CVE-2015-0359

MGASA-2015-0155

OPENSUSE-SU-2015_0718-1

RHSA-2015:0813

RHSA-2015_0813

SUSE-SU-2015:0722-1

Produtos afetados

Alt Linux

Flash Player

Red Hat

Suse

PT-2015-1265 · Adobe+3 · Flash Player+3

CVE-2015-0359

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 159