Test Kennung:	1.3.6.1.4.1.25623.1.0.805903
Kategorie:	General
Titel:	Adobe Flash Player Use-After-Free Vulnerability July15 (Mac OS X)
Zusammenfassung:	This host is installed with Adobe Flash; Player and is prone to multiple vulnerabilities.
Beschreibung:	Summary: This host is installed with Adobe Flash Player and is prone to multiple vulnerabilities. Vulnerability Insight: Multiple flaws exist due to: - An use-after-free error in 'ByteArray' class. - Multiple heap based buffer overflow errors. - Multiple memory corruption errors. - Multiple null pointer dereference errors. - Multiple unspecified errors. - A type confusion error. - Multiple use-after-free vulnerabilities. Vulnerability Impact: Successful exploitation will allow remote attackers to gain access to potentially sensitive information, conduct denial of service attack and potentially execute arbitrary code in the context of the affected user. Affected Software/OS: Adobe Flash Player before version 13.0.0.302, and 14.x through 18.x before 18.0.0.203 versions on Mac OS X. Solution: Upgrade to Adobe Flash Player version 13.0.0.302 or 18.0.0.203 or later. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	BugTraq ID: 75568 BugTraq ID: 75594 BugTraq ID: 75593 BugTraq ID: 75591 BugTraq ID: 75590 BugTraq ID: 75595 BugTraq ID: 75596 BugTraq ID: 75592 Common Vulnerability Exposure (CVE) ID: CVE-2015-5119 http://www.securityfocus.com/bid/75568 Cert/CC Advisory: TA15-195A http://www.us-cert.gov/ncas/alerts/TA15-195A CERT/CC vulnerability note: VU#561288 http://www.kb.cert.org/vuls/id/561288 https://security.gentoo.org/glsa/201507-13 http://blog.trendmicro.com/trendlabs-security-intelligence/unpatched-flash-player-flaws-more-pocs-found-in-hacking-team-leak/ http://twitter.com/w3bd3vil/statuses/618168863708962816 http://www.rapid7.com/db/modules/exploit/multi/browser/adobe_flash_hacking_team_uaf https://packetstormsecurity.com/files/132600/Adobe-Flash-Player-ByteArray-Use-After-Free.html RedHat Security Advisories: RHSA-2015:1214 http://rhn.redhat.com/errata/RHSA-2015-1214.html http://www.securitytracker.com/id/1032809 SuSE Security Announcement: SUSE-SU-2015:1211 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00017.html SuSE Security Announcement: SUSE-SU-2015:1214 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00018.html SuSE Security Announcement: openSUSE-SU-2015:1207 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00015.html SuSE Security Announcement: openSUSE-SU-2015:1210 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00016.html Common Vulnerability Exposure (CVE) ID: CVE-2014-0578 http://www.securityfocus.com/bid/75594 http://www.securitytracker.com/id/1032810 Common Vulnerability Exposure (CVE) ID: CVE-2015-3114 http://www.securityfocus.com/bid/75593 Common Vulnerability Exposure (CVE) ID: CVE-2015-3115 Common Vulnerability Exposure (CVE) ID: CVE-2015-3116 Common Vulnerability Exposure (CVE) ID: CVE-2015-3117 http://www.securityfocus.com/bid/75591 Common Vulnerability Exposure (CVE) ID: CVE-2015-3118 http://www.securityfocus.com/bid/75590 https://www.exploit-db.com/exploits/37848/ Common Vulnerability Exposure (CVE) ID: CVE-2015-3119 http://www.securityfocus.com/bid/75595 Common Vulnerability Exposure (CVE) ID: CVE-2015-3120 Common Vulnerability Exposure (CVE) ID: CVE-2015-3121 Common Vulnerability Exposure (CVE) ID: CVE-2015-3122 Common Vulnerability Exposure (CVE) ID: CVE-2015-3123 Common Vulnerability Exposure (CVE) ID: CVE-2015-3124 https://www.exploit-db.com/exploits/37849/ Common Vulnerability Exposure (CVE) ID: CVE-2015-3125 Common Vulnerability Exposure (CVE) ID: CVE-2015-3126 http://www.securityfocus.com/bid/75596 Common Vulnerability Exposure (CVE) ID: CVE-2015-3127 Common Vulnerability Exposure (CVE) ID: CVE-2015-3128 Common Vulnerability Exposure (CVE) ID: CVE-2015-3129 Common Vulnerability Exposure (CVE) ID: CVE-2015-3130 Common Vulnerability Exposure (CVE) ID: CVE-2015-3131 Common Vulnerability Exposure (CVE) ID: CVE-2015-3132 Common Vulnerability Exposure (CVE) ID: CVE-2015-3133 Common Vulnerability Exposure (CVE) ID: CVE-2015-3134 https://www.exploit-db.com/exploits/37862/ Common Vulnerability Exposure (CVE) ID: CVE-2015-3135 http://www.securityfocus.com/bid/75592 Common Vulnerability Exposure (CVE) ID: CVE-2015-3136 Common Vulnerability Exposure (CVE) ID: CVE-2015-3137 Common Vulnerability Exposure (CVE) ID: CVE-2015-4428 Common Vulnerability Exposure (CVE) ID: CVE-2015-4429 Common Vulnerability Exposure (CVE) ID: CVE-2015-4430 Common Vulnerability Exposure (CVE) ID: CVE-2015-4431 Common Vulnerability Exposure (CVE) ID: CVE-2015-4432 Common Vulnerability Exposure (CVE) ID: CVE-2015-4433 Common Vulnerability Exposure (CVE) ID: CVE-2015-5116 https://www.exploit-db.com/exploits/37851/ Common Vulnerability Exposure (CVE) ID: CVE-2015-5117 Common Vulnerability Exposure (CVE) ID: CVE-2015-5118
Copyright	Copyright (C) 2015 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.