Дата обнаружения
|
08/12/2015 |
Уровень угрозы
|
Critical |
Описание
|
Multiple serious vulnerabilities have been found in Adobe products. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions or execute arbitrary code. Below is a complete list of vulnerabilities
Technical details Vulnerability (4) related to toString call. Vulnerability (5) can be triggered via leveraging type confusion during getRemote call. Vulnerability (6) can be exploited via large BitmapData. |
Пораженные продукты
|
Adobe Flash Player versions earlier than 20.0.0.228 |
Решение
|
|
Первичный источник обнаружения
|
Adobe bulletin |
Оказываемое влияние
?
|
ACE
[?]
DoS
[?]
SB
[?]
|
Связанные продукты
|
Adobe Flash Player ActiveX Adobe AIR Adobe Flash Player NPAPI Adobe Flash Player PPAPI |
CVE-IDS
|
CVE-2015-80509.3Critical CVE-2015-84429.3Critical CVE-2015-80499.3Critical CVE-2015-84399.3Critical CVE-2015-84569.3Critical CVE-2015-84369.3Critical CVE-2015-84379.3Critical CVE-2015-84389.3Critical CVE-2015-80589.3Critical CVE-2015-84534.3Warning CVE-2015-84509.3Critical CVE-2015-84499.3Critical CVE-2015-84489.3Critical CVE-2015-84479.3Critical CVE-2015-84469.3Critical CVE-2015-84459.3Critical |
Эксплуатация
|
The following public exploits exists for this vulnerability: https://www.exploit-db.com/exploits/39649 https://www.exploit-db.com/exploits/39051 https://www.exploit-db.com/exploits/39054 https://www.exploit-db.com/exploits/39048 https://www.exploit-db.com/exploits/39047 https://www.exploit-db.com/exploits/39044 https://www.exploit-db.com/exploits/39046 https://www.exploit-db.com/exploits/39045 https://www.exploit-db.com/exploits/39040 https://www.exploit-db.com/exploits/39041 https://www.exploit-db.com/exploits/39042 https://www.exploit-db.com/exploits/39043 https://www.exploit-db.com/exploits/39050 https://www.exploit-db.com/exploits/39049 https://www.exploit-db.com/exploits/39650 https://www.exploit-db.com/exploits/39052 |
Узнай статистику распространения уязвимостей в твоем регионе |