Executive Summary

Informations
NameCVE-2018-4934First vendor Publication2018-05-19
VendorCveLast vendor Modification2019-03-07

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:N/A:N)
Cvss Base Score5Attack RangeNetwork
Cvss Impact Score2.9Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Adobe Flash Player versions 29.0.0.113 and earlier have an exploitable out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-4934

CWE : Common Weakness Enumeration

%idName
100 %CWE-125Out-of-bounds Read

CPE : Common Platform Enumeration

TypeDescriptionCount
Application471
Application3
Os1
Os1
Os1
Os1
Os1
Os1

Snort® IPS/IDS

DateDescription
2018-05-10Adobe Flash Player corrupt PNG image load out of bounds memory access attempt
RuleID : 46257 - Revision : 1 - Type : FILE-FLASH
2018-05-10Adobe Flash Player corrupt PNG image load out of bounds memory access attempt
RuleID : 46256 - Revision : 1 - Type : FILE-FLASH
2018-05-10Adobe Flash Player corrupt PNG image load out of bounds memory access attempt
RuleID : 46255 - Revision : 1 - Type : FILE-FLASH
2018-05-10Adobe Flash Player corrupt PNG image load out of bounds memory access attempt
RuleID : 46254 - Revision : 1 - Type : FILE-FLASH

Nessus® Vulnerability Scanner

DateDescription
2018-04-12Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201804-11.nasl - Type : ACT_GATHER_INFO
2018-04-11Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_5c6f74823ced11e8b1576451062f0f7a.nasl - Type : ACT_GATHER_INFO
2018-04-10Name : The remote Windows host has a browser plugin installed that is affected by mu...
File : flash_player_apsb18-08.nasl - Type : ACT_GATHER_INFO
2018-04-10Name : The remote macOS or Mac OSX host has a browser plugin installed that is affec...
File : macosx_flash_player_apsb18-08.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

SourceUrl
BID http://www.securityfocus.com/bid/103708
EXPLOIT-DB https://www.exploit-db.com/exploits/44528/
GENTOO https://security.gentoo.org/glsa/201804-11
MISC https://helpx.adobe.com/security/products/flash-player/apsb18-08.html
REDHAT https://access.redhat.com/errata/RHSA-2018:1119
SECTRACK http://www.securitytracker.com/id/1040648

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
DateInformations
2019-03-08 00:19:15
  • Multiple Updates
2018-10-29 17:19:24
  • Multiple Updates
2018-10-21 17:19:44
  • Multiple Updates
2018-06-27 17:19:17
  • Multiple Updates
2018-05-21 09:19:39
  • Multiple Updates
2018-05-19 21:19:05
  • First insertion