Adobe Flash Player before 13.0.0.281 and 14.x through 17.x before 17.0.0.169 on Windows and OS X and before 11.2.202.457 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, as exploited in the wild in April 2015, a different vulnerability than CVE-2015-0347, CVE-2015-0350, CVE-2015-0352, CVE-2015-0353, CVE-2015-0354, CVE-2015-0355, CVE-2015-0360, CVE-2015-3038, CVE-2015-3041, and CVE-2015-3042.
References
Link | Resource |
---|---|
http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00010.html | Mailing List Third Party Advisory |
http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00011.html | Mailing List Third Party Advisory |
http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00012.html | Mailing List Third Party Advisory |
http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00013.html | Mailing List Third Party Advisory |
http://rhn.redhat.com/errata/RHSA-2015-0813.html | Third Party Advisory |
http://www.securityfocus.com/bid/74062 | Broken Link Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1032105 | Broken Link Third Party Advisory VDB Entry |
https://helpx.adobe.com/security/products/flash-player/apsb15-06.html | Broken Link Patch Vendor Advisory |
https://security.gentoo.org/glsa/201504-07 | Third Party Advisory |
https://www.exploit-db.com/exploits/37536/ | Exploit Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
History
16 Jul 2024, 17:34
Type | Values Removed | Values Added |
---|---|---|
References | () http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00010.html - Mailing List, Third Party Advisory | |
References | () http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00011.html - Mailing List, Third Party Advisory | |
References | () http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00012.html - Mailing List, Third Party Advisory | |
References | () http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00013.html - Mailing List, Third Party Advisory | |
References | () http://www.securityfocus.com/bid/74062 - Broken Link, Third Party Advisory, VDB Entry | |
References | () http://www.securitytracker.com/id/1032105 - Broken Link, Third Party Advisory, VDB Entry | |
References | () https://helpx.adobe.com/security/products/flash-player/apsb15-06.html - Broken Link, Patch, Vendor Advisory | |
References | () https://security.gentoo.org/glsa/201504-07 - Third Party Advisory | |
References | () https://www.exploit-db.com/exploits/37536/ - Exploit, Third Party Advisory, VDB Entry | |
CPE | cpe:2.3:o:redhat:enterprise_linux_desktop_supplementary:5.0:client:*:*:*:*:*:* cpe:2.3:a:adobe:flash_player:16.0.0.257:*:*:*:*:*:*:* cpe:2.3:a:adobe:flash_player:15.0.0.223:*:*:*:*:*:*:* cpe:2.3:a:adobe:flash_player:14.0.0.125:*:*:*:*:*:*:* cpe:2.3:a:adobe:flash_player:16.0.0.296:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux_desktop_supplementary:6.0:*:*:*:*:*:*:* cpe:2.3:a:adobe:flash_player:16.0.0.235:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux_workstation_supplementary:6.0:*:*:*:*:*:*:* cpe:2.3:a:adobe:flash_player:15.0.0.152:*:*:*:*:*:*:* cpe:2.3:a:adobe:flash_player:14.0.0.145:*:*:*:*:*:*:* cpe:2.3:a:adobe:flash_player:15.0.0.246:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux_supplementary:5.0:server:*:*:*:*:*:* cpe:2.3:a:adobe:flash_player:15.0.0.239:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux_server_supplementary_eus:6.6.z:*:*:*:*:*:*:* cpe:2.3:a:adobe:flash_player:14.0.0.176:*:*:*:*:*:*:* cpe:2.3:a:adobe:flash_player:17.0.0.134:*:*:*:*:*:*:* cpe:2.3:a:adobe:flash_player:15.0.0.189:*:*:*:*:*:*:* cpe:2.3:a:adobe:flash_player:15.0.0.167:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux_server_supplementary:6.0:*:*:*:*:*:*:* cpe:2.3:a:adobe:flash_player:14.0.0.179:*:*:*:*:*:*:* |
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux_eus:6.6:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux_server_from_rhui:6.0:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux_server_from_rhui:5.0:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux_server_aus:6.6:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:* cpe:2.3:o:opensuse:evergreen:11.4:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:* |
CVSS |
v2 : v3 : |
v2 : 10.0
v3 : 9.8 |
First Time |
Redhat enterprise Linux Server From Rhui
Redhat enterprise Linux Desktop Redhat enterprise Linux Server Opensuse evergreen Redhat enterprise Linux Workstation Redhat enterprise Linux Server Aus Redhat enterprise Linux Eus |
|
CWE | CWE-787 |
Information
Published : 2015-04-14 22:59
Updated : 2024-07-16 17:34
NVD link : CVE-2015-3043
Mitre link : CVE-2015-3043
CVE.ORG link : CVE-2015-3043
JSON object : View
Products Affected
microsoft
- windows
novell
- suse_linux_enterprise_workstation_extension
- suse_linux_enterprise_desktop
opensuse
- opensuse
- evergreen
redhat
- enterprise_linux_desktop
- enterprise_linux_server_aus
- enterprise_linux_workstation
- enterprise_linux_server
- enterprise_linux_server_from_rhui
- enterprise_linux_eus
linux
- linux_kernel
apple
- mac_os_x
adobe
- flash_player
CWE
CWE-787
Out-of-bounds Write