CVE-2015-7645

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Adobe Flash Player versions 18.x through 18.0.0.252 Adobe Flash Player versions 19.x through 19.0.0.207 Adobe Flash Player versions 11.x through 11.2.202.535

Description The issue is related to errors in the code of the Flash Player platform, allowing a remote attacker to execute arbitrary code using a specially crafted SWF file. This has been exploited in the wild.

Recommendations For Adobe Flash Player versions 18.x through 18.0.0.252, update to a version later than 18.0.0.252 to resolve the issue. For Adobe Flash Player versions 19.x through 19.0.0.207, update to a version later than 19.0.0.207 to resolve the issue. For Adobe Flash Player versions 11.x through 11.2.202.535, update to a version later than 11.2.202.535 to resolve the issue.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-17

Related Identifiers

ALT-PU-2015-1884

BDU:2015-11791

CVE-2015-7645

MGASA-2015-0404

OPENSUSE-SU-2015_1768-1

RHSA-2015:1913

RHSA-2015:2024

RHSA-2015_1913

SUSE-SU-2015:1770-1

SUSE-SU-2015:1771-1

SUSE-SU-2015_1770-1

SUSE-SU-2015_1771-1

Affected Products

Alt Linux

Flash Player

Red Hat

Suse

CVE-2015-7645

Weakness Enumeration

Related Identifiers

Affected Products

References · 49