PT-2015-3070 · Adobe+2 · Flash Player+2
Publicado
2015-10-16
·
Atualizado
2017-09-13
·
CVE-2015-7647
CVSS v2.0
10
Alta
| Vetor | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Adobe Flash Player versions prior to 18.0.0.255
Adobe Flash Player versions 19.x prior to 19.0.0.226
Adobe Flash Player versions prior to 11.2.202.540 on Linux
Description
The issue is related to a type confusion error, allowing attackers to execute arbitrary code. This can be achieved by leveraging an unspecified type confusion, which is a different issue. The exploitation of this error may enable a remote attacker to execute arbitrary code by causing a type inconsistency.
Recommendations
For Adobe Flash Player versions prior to 18.0.0.255, update to version 18.0.0.255 or later.
For Adobe Flash Player versions 19.x prior to 19.0.0.226, update to version 19.0.0.226 or later.
For Adobe Flash Player versions prior to 11.2.202.540 on Linux, update to version 11.2.202.540 or later.
Exploit
Correção
Type Confusion
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Alt Linux
Flash Player
Red Hat