Executive Summary

Informations
NameCVE-2016-1001First vendor Publication2016-03-12
VendorCveLast vendor Modification2017-09-07

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C)
Cvss Base Score10Attack RangeNetwork
Cvss Impact Score10Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Heap-based buffer overflow in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202.577 on Linux, Adobe AIR before 21.0.0.176, Adobe AIR SDK before 21.0.0.176, and Adobe AIR SDK & Compiler before 21.0.0.176 allows attackers to execute arbitrary code via unspecified vectors.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1001

CWE : Common Weakness Enumeration

%idName
100 %CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer

CPE : Common Platform Enumeration

TypeDescriptionCount
Application36
Application23
Application1
Application394
Application1
Os1
Os1
Os1
Os1
Os1
Os1
Os1
Os1

Snort® IPS/IDS

DateDescription
2016-04-12Adobe Flash Player invalid FLV header out of bounds write attempt
RuleID : 38226 - Revision : 5 - Type : FILE-FLASH
2016-04-12Adobe Flash Player invalid FLV header out of bounds write attempt
RuleID : 38225 - Revision : 5 - Type : FILE-FLASH

Nessus® Vulnerability Scanner

DateDescription
2016-04-01Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_f7b3d1ebf73811e5a7100011d823eebd.nasl - Type : ACT_GATHER_INFO
2016-03-14Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201603-07.nasl - Type : ACT_GATHER_INFO
2016-03-14Name : The remote openSUSE host is missing a security update.
File : openSUSE-2016-325.nasl - Type : ACT_GATHER_INFO
2016-03-14Name : The remote openSUSE host is missing a security update.
File : openSUSE-2016-335.nasl - Type : ACT_GATHER_INFO
2016-03-14Name : The remote Red Hat host is missing a security update.
File : redhat-RHSA-2016-0438.nasl - Type : ACT_GATHER_INFO
2016-03-14Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2016-0715-1.nasl - Type : ACT_GATHER_INFO
2016-03-14Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2016-0716-1.nasl - Type : ACT_GATHER_INFO
2016-03-11Name : The remote Windows host has a browser plugin installed that is affected by mu...
File : adobe_air_apsb16-08.nasl - Type : ACT_GATHER_INFO
2016-03-11Name : The remote Windows host has a browser plugin installed that is affected by mu...
File : flash_player_apsb16-08.nasl - Type : ACT_GATHER_INFO
2016-03-11Name : The remote Mac OS X host has a browser plugin installed that is affected by m...
File : macosx_adobe_air_apsb16-08.nasl - Type : ACT_GATHER_INFO
2016-03-11Name : The remote Mac OS X host has a browser plugin installed that is affected by m...
File : macosx_flash_player_apsb16-08.nasl - Type : ACT_GATHER_INFO
2016-03-11Name : The remote Windows host has a browser plugin installed that is affected by mu...
File : smb_nt_ms16-036.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

SourceUrl
CONFIRM https://helpx.adobe.com/security/products/flash-player/apsb16-08.html
EXPLOIT-DB https://www.exploit-db.com/exploits/39609/
GENTOO https://security.gentoo.org/glsa/201603-07
SECTRACK http://www.securitytracker.com/id/1035251
SUSE http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00022.html
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00023.html
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00024.html
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00032.html

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
DateInformations
2019-08-27 12:07:57
  • Multiple Updates
2019-08-20 12:01:52
  • Multiple Updates
2019-07-30 12:07:54
  • Multiple Updates
2019-07-28 12:04:10
  • Multiple Updates
2019-07-17 12:07:49
  • Multiple Updates
2019-06-15 12:07:30
  • Multiple Updates
2018-12-15 12:06:20
  • Multiple Updates
2018-10-30 12:08:32
  • Multiple Updates
2018-07-04 12:01:00
  • Multiple Updates
2018-03-02 01:02:23
  • Multiple Updates
2017-09-08 09:23:22
  • Multiple Updates
2017-07-07 12:01:56
  • Multiple Updates
2017-01-17 13:22:45
  • Multiple Updates
2017-01-13 13:24:47
  • Multiple Updates
2016-12-03 09:24:36
  • Multiple Updates
2016-11-04 12:03:30
  • Multiple Updates
2016-10-18 12:04:56
  • Multiple Updates
2016-10-15 12:04:28
  • Multiple Updates
2016-09-16 12:01:06
  • Multiple Updates
2016-07-14 12:01:50
  • Multiple Updates
2016-06-28 19:51:00
  • Multiple Updates
2016-04-27 03:20:33
  • Multiple Updates
2016-04-02 13:26:25
  • Multiple Updates
2016-03-17 00:24:10
  • Multiple Updates
2016-03-15 13:25:11
  • Multiple Updates
2016-03-12 21:24:31
  • First insertion