Adobe Flash Player Memory Corruption Vulnerability (CVE-2015-0310)
Release date:
Updated on:
Affected Systems:
Adobe Flash Player <16.0.0.257
Adobe Flash Player <13.0.0.260
Adobe Flash Player <11.2.202.429
Unaffected system:
Adobe Flash Player 16.0.0.287
Adobe Flash Player 13.0.0.262
Adobe Flash Player 11.2.202.438
Description:
Bugtraq id: 72261
CVE (CAN) ID: CVE-2015-0310
Adobe Flash Player is an integrated multimedia Player.
Adobe Flash Player 16.0.0.257 and other versions have the Memory Corruption Vulnerability. Attackers can exploit this vulnerability to attack the Flash Player of earlier versions and bypass the memory randomization in Windows, execute arbitrary code in the context of the affected application,
<* Source: Yang Dingning
Link: http://secunia.com/advisories/62432/
Https://malware.dontneedcoffee.com/2015/01/unpatched-vulnerability-0day-in-flash.html
Https://helpx.adobe.com/security/products/flash-player/apsb15-02.html
*>
Suggestion:
Vendor patch:
Adobe
-----
Adobe has released a Security Bulletin (APSB15-02) and patches for this:
APSB15-02: Security updates available for Adobe Flash Player
Link: https://helpx.adobe.com/security/products/flash-player/apsb15-02.html
This article permanently updates the link address: