Executive Summary
Summary | |
---|---|
Title | Adobe Flash Player: Multiple vulnerabilities |
Informations | |||
---|---|---|---|
Name | GLSA-201509-07 | First vendor Publication | 2015-09-25 |
Vendor | Gentoo | Last vendor Modification | 2015-09-25 |
Severity (Vendor) | Normal | Revision | N/A |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 10 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Synopsis Multiple vulnerabilities have been found in Adobe Flash Player, the worst of which allows remote attackers to execute arbitrary code. Background Description Impact Workaround Resolution References Availability https://security.gentoo.org/glsa/201509-07 |
Original Source
Url : http://security.gentoo.org/glsa/glsa-201509-07.xml |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
68 % | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
21 % | CWE-200 | Information Exposure |
5 % | CWE-352 | Cross-Site Request Forgery (CSRF) (CWE/SANS Top 25) |
5 % | CWE-20 | Improper Input Validation |
CPE : Common Platform Enumeration
Information Assurance Vulnerability Management (IAVM)
Date | Description |
---|---|
2015-09-24 | IAVM : 2015-A-0221 - Multiple Vulnerabilities in Adobe Flash Player and AIR Severity : Category I - VMSKEY : V0061469 |
2015-09-10 | IAVM : 2015-A-0209 - Multiple Vulnerabilities in Adobe Shockwave Player Severity : Category I - VMSKEY : V0061379 |
Snort® IPS/IDS
Date | Description |
---|---|
2019-09-19 | Adobe Flash player memory corruption attempt RuleID : 51082 - Revision : 1 - Type : FILE-FLASH |
2019-09-19 | Adobe Flash player memory corruption attempt RuleID : 51081 - Revision : 1 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player malformed mp4 CABAC encoding out of bounds read attempt RuleID : 36513 - Revision : 2 - Type : FILE-MULTIMEDIA |
2016-03-14 | Adobe Flash Player malformed mp4 CABAC encoding out of bounds read attempt RuleID : 36512 - Revision : 2 - Type : FILE-MULTIMEDIA |
2016-03-14 | Adobe Flash Player same orgin policy bypass attempt RuleID : 36479 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player same orgin policy bypass attempt RuleID : 36478 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player same orgin policy bypass attempt RuleID : 36477 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player same orgin policy bypass attempt RuleID : 36476 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player invalid vector length memory corruption attempt RuleID : 36374 - Revision : 2 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player invalid vector length memory corruption attempt RuleID : 36373 - Revision : 2 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player invalid vector length memory corruption attempt RuleID : 36372 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player invalid vector length memory corruption attempt RuleID : 36371 - Revision : 2 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player DefineText buffer overflow attempt RuleID : 36370 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player DefineText buffer overflow attempt RuleID : 36369 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player DefineText buffer overflow attempt RuleID : 36368 - Revision : 2 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player DefineText buffer overflow attempt RuleID : 36367 - Revision : 2 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player AVSegmentedSource null pointer attempt RuleID : 36358 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player AVSegmentedSource null pointer attempt RuleID : 36357 - Revision : 2 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player AVSS null pointer attempt RuleID : 36356 - Revision : 2 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player AVSS null pointer attempt RuleID : 36355 - Revision : 2 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player AVSS null pointer attempt RuleID : 36354 - Revision : 2 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player AVSS null pointer attempt RuleID : 36353 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player AVSS null pointer attempt RuleID : 36352 - Revision : 2 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player AVSS null pointer attempt RuleID : 36351 - Revision : 2 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player DisplayList memory corruption attempt RuleID : 36348 - Revision : 2 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player DisplayList memory corruption attempt RuleID : 36347 - Revision : 2 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player DisplayList memory corruption attempt RuleID : 36346 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player DisplayList memory corruption attempt RuleID : 36345 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player DisplayList memory corruption attempt RuleID : 36344 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player DisplayList memory corruption attempt RuleID : 36343 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player DisplayList memory corruption attempt RuleID : 36342 - Revision : 2 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player DisplayList memory corruption attempt RuleID : 36341 - Revision : 2 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player DisplayList memory corruption attempt RuleID : 36340 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player DisplayList memory corruption attempt RuleID : 36339 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player removeChildren use-after-free attempt RuleID : 36324 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player removeChildren use-after-free attempt RuleID : 36323 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player removeChildren use-after-free attempt RuleID : 36322 - Revision : 2 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player removeChildren use-after-free attempt RuleID : 36321 - Revision : 2 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player Netstream Video null pointer dereference attempt RuleID : 36319 - Revision : 2 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player Netstream Video null pointer dereference attempt RuleID : 36318 - Revision : 2 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player URI loaded FLV potential information leak attempt RuleID : 36317 - Revision : 2 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player URI loaded MP4 potential information leak attempt RuleID : 36316 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player class scope bypass attempt RuleID : 36314 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player class scope bypass attempt RuleID : 36313 - Revision : 2 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player class scope bypass attempt RuleID : 36312 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player class scope bypass attempt RuleID : 36311 - Revision : 2 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player video decode use after free attempt RuleID : 36298 - Revision : 2 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player video decode use after free attempt RuleID : 36297 - Revision : 2 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player movie signed integer memory corruption attempt RuleID : 36296 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player movie signed integer memory corruption attempt RuleID : 36295 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player NetStream.appendBytes use after free attempt RuleID : 36292 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player NetStream.appendBytes use after free attempt RuleID : 36291 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player NetStream.appendBytes use after free attempt RuleID : 36290 - Revision : 2 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player NetStream.appendBytes use after free attempt RuleID : 36289 - Revision : 2 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player avc_core out of bounds memory access attempt RuleID : 36288 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player avc_core out of bounds memory access attempt RuleID : 36287 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player diplayAsPassword information disclosure attempt RuleID : 36280 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player diplayAsPassword information disclosure attempt RuleID : 36279 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player diplayAsPassword information disclosure attempt RuleID : 36278 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player diplayAsPassword information disclosure attempt RuleID : 36277 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player URLStreamObject out of bounds read attempt RuleID : 36266 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player URLStreamObject out of bounds read attempt RuleID : 36265 - Revision : 2 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player URLStreamObject out of bounds read attempt RuleID : 36264 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player URLStreamObject out of bounds read attempt RuleID : 36263 - Revision : 2 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player ByteArray writeByte buffer overflow attempt RuleID : 36260 - Revision : 2 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player ByteArray writeByte buffer overflow attempt RuleID : 36259 - Revision : 3 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player ByteArray writeByte buffer overflow attempt RuleID : 36258 - Revision : 2 - Type : FILE-FLASH |
2016-03-14 | Adobe Flash Player ByteArray writeByte buffer overflow attempt RuleID : 36257 - Revision : 2 - Type : FILE-FLASH |
2015-01-15 | Adobe Flash Player corrupt MP4 video denial of service attempt RuleID : 32818 - Revision : 8 - Type : FILE-FLASH |
2015-01-15 | Adobe Flash Player corrupt MP4 video denial of service attempt RuleID : 32817 - Revision : 8 - Type : FILE-FLASH |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2016-06-22 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201509-07.nasl - Type : ACT_GATHER_INFO |
2015-09-29 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_4e3e8a5065c111e5948ebcaec565249c.nasl - Type : ACT_GATHER_INFO |
2015-09-25 | Name : The remote SUSE host is missing one or more security updates. File : suse_SU-2015-1614-1.nasl - Type : ACT_GATHER_INFO |
2015-09-25 | Name : The remote SUSE host is missing one or more security updates. File : suse_SU-2015-1618-1.nasl - Type : ACT_GATHER_INFO |
2015-09-24 | Name : The remote openSUSE host is missing a security update. File : openSUSE-2015-603.nasl - Type : ACT_GATHER_INFO |
2015-09-23 | Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2015-1814.nasl - Type : ACT_GATHER_INFO |
2015-09-22 | Name : The remote Windows host has a browser plugin installed that is affected by mu... File : adobe_air_apsb15-23.nasl - Type : ACT_GATHER_INFO |
2015-09-22 | Name : The remote Windows host has a browser plugin installed that is affected by mu... File : flash_player_apsb15-23.nasl - Type : ACT_GATHER_INFO |
2015-09-22 | Name : The remote Windows host contains a web browser that is affected by multiple v... File : google_chrome_45_0_2454_99.nasl - Type : ACT_GATHER_INFO |
2015-09-22 | Name : The remote Mac OS X host has a browser plugin installed that is affected by m... File : macosx_adobe_air_apsb15-23.nasl - Type : ACT_GATHER_INFO |
2015-09-22 | Name : The remote Mac OS X host has a browser plugin installed that is affected by m... File : macosx_flash_player_apsb15-23.nasl - Type : ACT_GATHER_INFO |
2015-09-22 | Name : The remote Mac OS X host contains a web browser that is affected by multiple ... File : macosx_google_chrome_45_0_2454_99.nasl - Type : ACT_GATHER_INFO |
2015-09-22 | Name : The remote Windows host has a browser plugin installed that is affected by mu... File : smb_kb3087040.nasl - Type : ACT_GATHER_INFO |
2015-09-09 | Name : The remote Mac OS X host contains a web browser plugin that is affected by mu... File : macosx_shockwave_player_apsb15-22.nasl - Type : ACT_GATHER_INFO |
2015-09-09 | Name : The remote Windows host contains a web browser plugin that is affected by mul... File : shockwave_player_apsb15-22.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2016-06-23 13:29:28 |
|
2015-09-25 13:21:23 |
|