Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-0338

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2015-0338
Last Modified 23 Mar 2015 10:02:04
Published 13 Mar 2015 01:59:06
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2015-0338

Summary

Integer overflow in Adobe Flash Player before 13.0.0.277 and 14.x through 17.x before 17.0.0.134 on Windows and OS X and before 11.2.202.451 on Linux allows attackers to execute arbitrary code via unspecified vectors.

Vulnerable Systems

Application

  • Adobe Flash Player 11.2.202.442

  • Adobe Flash Player 13.0.0.264

  • Adobe Flash Player 14.0.0.125

  • Adobe Flash Player 14.0.0.145

  • Adobe Flash Player 14.0.0.176

  • Adobe Flash Player 14.0.0.179

  • Adobe Flash Player 15.0.0.152

  • Adobe Flash Player 15.0.0.167

  • Adobe Flash Player 15.0.0.189

  • Adobe Flash Player 15.0.0.223

  • Adobe Flash Player 15.0.0.239

  • Adobe Flash Player 15.0.0.246

  • Adobe Flash Player 16.0.0.235

  • Adobe Flash Player 16.0.0.257

  • Adobe Flash Player 16.0.0.287

  • Adobe Flash Player 16.0.0.296

  • Adobe Flash Player 16.0.0.305


References

CONFIRM - https://helpx.adobe.com/security/products/flash-player/apsb15-05.html

SECTRACK - 1031922

SUSE - openSUSE-SU-2015:0496

SUSE - SUSE-SU-2015:0493

SUSE - SUSE-SU-2015:0491

SUSE - openSUSE-SU-2015:0490

REDHAT - RHSA-2015:0697

Related Patches

APSB15-05 Adobe Flash Player 13.0.0.277 ESR for Mac OS X (See Notes)

APSB15-05 Adobe Flash Player 17.0.0.134 for Mac OS X (See Notes)

Novell SUSE 2015:10458 flash-player security update for SLED 11 SP3 i586

Novell SUSE 2015:10458 flash-player security update for SLED 11 SP3 x86_64


Last Updated: 27 May 2016 11:08:08