HomePentest-Tools.com Logo

Adobe Flash Player Multiple Vulnerabilities Dec15 (Linux) CVE-2015-8045CVE-2015-8047CVE-2015-8048CVE-2015-8049CVE-2015-8050CVE-2015-8418CVE-2015-8454CVE-2015-8455CVE-2015-8055CVE-2015-8056CVE-2015-8057CVE-2015-8058CVE-2015-8059CVE-2015-8060CVE-2015-8061CVE-2015-8062CVE-2015-8063CVE-2015-8064CVE-2015-8065CVE-2015-8066CVE-2015-8067CVE-2015-8068CVE-2015-8069CVE-2015-8070CVE-2015-8071CVE-2015-8401CVE-2015-8402CVE-2015-8403CVE-2015-8404CVE-2015-8405CVE-2015-8406CVE-2015-8407CVE-2015-8408CVE-2015-8409CVE-2015-8410CVE-2015-8411CVE-2015-8412CVE-2015-8413CVE-2015-8414CVE-2015-8415CVE-2015-8416CVE-2015-8417CVE-2015-8419CVE-2015-8420CVE-2015-8421CVE-2015-8422CVE-2015-8423CVE-2015-8424CVE-2015-8425CVE-2015-8426CVE-2015-8427CVE-2015-8428CVE-2015-8429CVE-2015-8430CVE-2015-8431CVE-2015-8432CVE-2015-8433CVE-2015-8434CVE-2015-8435CVE-2015-8436CVE-2015-8437CVE-2015-8438CVE-2015-8439CVE-2015-8440CVE-2015-8441CVE-2015-8442CVE-2015-8443CVE-2015-8444CVE-2015-8445CVE-2015-8446CVE-2015-8447CVE-2015-8448CVE-2015-8449CVE-2015-8450CVE-2015-8451CVE-2015-8452CVE-2015-8453CVE-2015-8456CVE-2015-8457CVE-2015-8652CVE-2015-8653CVE-2015-8654CVE-2015-8655CVE-2015-8656CVE-2015-8657CVE-2015-8822CVE-2015-8658CVE-2015-8820CVE-2015-8821CVE-2015-8823

Severity
CVSSv3 Score
8.8
Vulnerability description

Adobe Flash Player is prone to multiple vulnerabilities.

Risk description

Multiple flaws exist due to: - Multiple heap buffer overflow vulnerabilities. - Multiple memory corruption vulnerabilities. - Multiple security bypass vulnerabilities. - A stack overflow vulnerability. - A type confusion vulnerability. - An integer overflow vulnerability. - A buffer overflow vulnerability. - Multiple use-after-free vulnerabilities. Successful exploitation will allow attackers to bypass security restrictions and execute arbitrary code on the affected system.

Recommendation

Upgrade to Adobe Flash Player version 11.2.202.554 or later.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Dec 10, 2015
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available