Описание
Multiple serious vulnerabilities have been found in Adobe Flash player. Malicious users can exploit these vulnerabilities to execute arbitrary code and obtain sensitive information.
Below is a complete list of vulnerabilities:
- Type Confusion vulnerability in Adobe Flash player can be exploited locally via a specially designed document file to execute arbitrary code;
- Integer Overflow vulnerability in Adobe Flash player can be exploited locally via a specially designed document file to obtain sensitive information;
- Out-of-bounds read vulnerability in Adobe Flash player can be exploited locally via a specially designed document file to obtain sensitive information;
- Stack-based buffer overflow vulnerability in Adobe Flash player can be exploited locally via a specially designed document file to execute arbitrary code.
Technical details
To update Adobe Flash Player ActiveX (detected as Flash.ocx) on Windows 8 and higher, install latest updates from Control Panel
Первичный источник обнаружения
Эксплуатация
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
Связанные продукты
Список CVE
- CVE-2018-4945 high
- CVE-2018-5000 warning
- CVE-2018-5001 warning
- CVE-2018-5002 critical
Смотрите также
Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com
Нашли неточность в описании этой уязвимости? Дайте нам знать!