PT-2015-1624 · Adobe+3 · Flash Player+4

Published

2015-07-08

Updated

2017-09-22

CVE-2015-3116

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Adobe Flash Player (affected versions not specified) Adobe AIR (affected versions not specified) ALT Linux (affected versions not specified)

Description The issue is related to inadequate access control in the software platforms. Exploitation of the issue may allow a remote attacker to bypass existing access restrictions.

Recommendations For Adobe Flash Player, restrict access to sensitive resources until a patch is available. For Adobe AIR, consider disabling features that rely on access control until a fix is released. For ALT Linux, avoid using packages that may be affected by the issue until an update is provided. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-284

Related Identifiers

ALT-PU-2015-1596

BDU:2015-10963

BDU:2015-10964

BDU:2015-10965

CVE-2015-3116

MGASA-2015-0273

RHSA-2015:1214

RHSA-2015_1214

SUSE-SU-2015:1211-1

Affected Products

Alt Linux

Air

Flash Player

Red Hat

Suse

PT-2015-1624 · Adobe+3 · Flash Player+4

CVE-2015-3116

Weakness Enumeration

Related Identifiers

Affected Products

References · 242