Executive Summary
| Informations | |||
|---|---|---|---|
| Name | CVE-2016-0959 | First vendor Publication | 2017-06-27 |
| Vendor | Cve | Last vendor Modification | 2023-05-08 |
Security-Database Scoring CVSS v3
| Cvss vector : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H | |||
|---|---|---|---|
| Overall CVSS Score | 9.8 | ||
| Base Score | 9.8 | Environmental Score | 9.8 |
| impact SubScore | 5.9 | Temporal Score | 9.8 |
| Exploitabality Sub Score | 3.9 | ||
| Attack Vector | Network | Attack Complexity | Low |
| Privileges Required | None | User Interaction | None |
| Scope | Unchanged | Confidentiality Impact | High |
| Integrity Impact | High | Availability Impact | High |
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C) | |||
|---|---|---|---|
| Cvss Base Score | 10 | Attack Range | Network |
| Cvss Impact Score | 10 | Attack Complexity | Low |
| Cvss Expoit Score | 10 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| Use after free vulnerability in Adobe Flash Player Desktop Runtime before 20.0.0.267, Adobe Flash Player Extended Support Release before 18.0.0.324, Adobe Flash Player for Google Chrome before 20.0.0.267, Adobe Flash Player for Microsoft Edge and Internet Explorer 11 before 20.0.0.267, Adobe Flash Player for Internet Explorer 10 and 11 before 20.0.0.267, Adobe Flash Player for Linux before 11.2.202.559, AIR Desktop Runtime before 20.0.0.233, AIR SDK before 20.0.0.233, AIR SDK & Compiler before 20.0.0.233, AIR for Android before 20.0.0.233. |
Original Source
| Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0959 |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 100 % | CWE-416 | Use After Free |
CPE : Common Platform Enumeration
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2016-03-22 | Adobe Flash Player ASnative use after free attempt RuleID : 37792 - Revision : 3 - Type : FILE-FLASH |
| 2016-03-22 | Adobe Flash Player ASnative use after free attempt RuleID : 37791 - Revision : 2 - Type : FILE-FLASH |
| 2016-03-22 | Adobe Flash Player ASnative use after free attempt RuleID : 37790 - Revision : 3 - Type : FILE-FLASH |
| 2016-03-22 | Adobe Flash Player ASnative use after free attempt RuleID : 37789 - Revision : 2 - Type : FILE-FLASH |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2015-12-30 | Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2015-2697.nasl - Type : ACT_GATHER_INFO |
| 2015-12-29 | Name : The remote Windows host has a browser plugin installed that is affected by mu... File : adobe_air_apsb16-01.nasl - Type : ACT_GATHER_INFO |
| 2015-12-29 | Name : The remote Windows host has a browser plugin installed that is affected by mu... File : flash_player_apsb16-01.nasl - Type : ACT_GATHER_INFO |
| 2015-12-29 | Name : The remote Mac OS X host has a browser plugin installed that is affected by m... File : macosx_adobe_air_apsb16-01.nasl - Type : ACT_GATHER_INFO |
| 2015-12-29 | Name : The remote Mac OS X host has a browser plugin installed that is affected by m... File : macosx_flash_player_apsb16-01.nasl - Type : ACT_GATHER_INFO |
Sources (Detail)
| Source | Url |
|---|---|
| CONFIRM | https://bugzilla.redhat.com/show_bug.cgi?id=1294580 https://helpx.adobe.com/security/products/flash-player/apsb16-01.html |
| REDHAT | http://rhn.redhat.com/errata/RHSA-2015-2697.html |
Alert History
| Date | Informations |
|---|---|
| 2023-05-08 17:27:48 |
|
| 2020-05-23 01:57:46 |
|
| 2020-05-23 00:48:30 |
|
| 2019-09-27 12:08:02 |
|
| 2019-08-27 12:07:55 |
|
| 2019-08-20 12:01:50 |
|
| 2019-07-30 12:07:52 |
|
| 2019-07-28 12:04:08 |
|
| 2019-07-17 12:07:47 |
|
| 2019-06-15 12:07:28 |
|
| 2018-12-15 12:06:19 |
|
| 2018-10-30 12:08:31 |
|
| 2018-07-04 12:00:58 |
|
| 2018-03-02 01:02:22 |
|
| 2018-01-05 09:23:35 |
|
| 2017-09-08 12:05:39 |
|
| 2017-07-07 00:23:04 |
|
| 2017-06-29 13:23:35 |
|
| 2017-06-28 05:21:44 |
|
