Vulnerabilities Threats

English Russian Japanese LatAm Türkiye Brasil France Český Deutschland

KLA10623
Multiple vulnerabilities in Adobe products

Updated: 06/18/2020
Detect date
?
 07/08/2015
Severity
?
 Critical
Description

Multiple critical vulnerabilities have been found in Adobe products. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, execute arbitrary code or obtain sensitive information.

Below is a complete list of vulnerabilities

  1. Improper memory randomization can be exploited remotely via an unknown vectors related to Windows 7 x64 system;
  2. Heap based buffer overflow, null pointer dereference, type confusion and use-after-free vulnerabilities can be exploited remotely via an unknown vectors.
Affected products

Adobe Flash Player versions earlier than 18.0.0.203
Adobe Flash Player ESR versions earlier than 13.0.0.302
Adobe Flash Player for Linux versions earlier than 11.2.202.481
Adobe AIR 18.0.0.180
Solution

Update to the latest version
Get Adobe Flash Player
Get Adobe AIR
Original advisories

Adobe bulletin
Impacts
?
ACE 
[?]

OSI 
[?]

DoS 
[?]

SB 
[?]

PE 
[?]
Related products
 Adobe Flash Player ActiveX
Adobe AIR
Adobe Flash Player NPAPI
Adobe Flash Player PPAPI
CVE-IDS
?
CVE-2015-30975.0Critical
CVE-2015-51165.0Critical
CVE-2015-31155.0Critical
CVE-2015-31165.0Critical
CVE-2015-31145.0Critical
CVE-2014-05785.0Critical
CVE-2015-31255.0Critical
CVE-2015-31267.5Critical
Exploitation

The following public exploits exists for this vulnerability:

https://www.exploit-db.com/exploits/37848

https://www.exploit-db.com/exploits/37851

https://www.exploit-db.com/exploits/37849

https://www.exploit-db.com/exploits/37862

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
Find out the statistics of the vulnerabilities spreading in your region
© 2022 AO Kaspersky Lab. All Rights Reserved.
Privacy Policy Cookies

Up