PT-2015-1623 · Adobe+3 · Flash Player+4

Published

2015-07-08

Updated

2017-09-22

CVE-2015-3115

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Adobe Flash Player (affected versions not specified) Adobe AIR (affected versions not specified) ALT Linux (affected versions not specified)

Description The issue is related to inadequate access control in the software platforms. Exploitation of the issue may allow a remote attacker to bypass existing access restrictions.

Recommendations For Adobe Flash Player, restrict access to sensitive resources until a fix is available. For Adobe AIR, consider disabling remote access features until the issue is resolved. For ALT Linux, avoid using the vulnerable package until an update is provided. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-284

Related Identifiers

ALT-PU-2015-1596

BDU:2015-10960

BDU:2015-10961

BDU:2015-10962

CVE-2015-3115

MGASA-2015-0273

RHSA-2015:1214

RHSA-2015_1214

SUSE-SU-2015:1211-1

Affected Products

Alt Linux

Air

Flash Player

Red Hat

Suse

PT-2015-1623 · Adobe+3 · Flash Player+4

CVE-2015-3115

Weakness Enumeration

Related Identifiers

Affected Products

References · 242