PT-2015-1362 · Adobe+3 · Flash Player+3

Marcus Meissner

Publicado

2015-06-23

Atualizado

2025-11-17

CVE-2015-3113

CVSS v2.0

Crítica

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Adobe Flash Player versions prior to 13.0.0.296 Adobe Flash Player versions 14.x through 18.x before 18.0.0.194 Adobe Flash Player versions prior to 11.2.202.468 on Linux

Description The issue is a heap-based buffer overflow in Adobe Flash Player that can be exploited by remote attackers to execute arbitrary code via unspecified vectors. This has been exploited in the wild in June 2015.

Recommendations For Adobe Flash Player versions prior to 13.0.0.296, update to version 13.0.0.296 or later. For Adobe Flash Player versions 14.x through 18.x, update to version 18.0.0.194 or later. For Adobe Flash Player versions prior to 11.2.202.468 on Linux, update to version 11.2.202.468 or later.

Exploit

Correção

RCE

Buffer Overflow

Memory Corruption

Heap Based Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119CWE-787CWE-122

Identificadores relacionados

ALT-PU-2015-1565

BDU:2015-10453

BDU:2015-10454

CVE-2015-3113

MGASA-2015-0248

OPENSUSE-SU-2015_1148-1

RHSA-2015:1184

RHSA-2015_1184

SUSE-SU-2015:1136-1

SUSE-SU-2015_1136-1

SUSE-SU-2015_1137-1

Produtos afetados

Alt Linux

Flash Player

Red Hat

Suse

PT-2015-1362 · Adobe+3 · Flash Player+3

CVE-2015-3113

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 34