BDU:2015-10660

Уязвимость программной платформы Flash Player, позволяющая нарушителю выполнить произвольный код или вызвать отказ в обслуживании

Severity: CRITICAL (10.0)

References:

CVE-2015-5119

Published: 2015-07-08

BDU:2015-10661

Severity: CRITICAL (10.0)

References:

CVE-2015-5119

Published: 2015-07-08
Modified: 2025-02-14

CVE-2015-5119

Use-after-free vulnerability in the ByteArray class in the ActionScript 3 (AS3) implementation in Adobe Flash Player 13.x through 13.0.0.296 and 14.x through 18.0.0.194 on Windows and OS X and 11.x through 11.2.202.468 on Linux allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted Flash content that overrides a valueOf function, as exploited in the wild in July 2015.

Severity: CRITICAL (9.8) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

Version: 2.1.0

Package adobe-flash-player update in p6 on 2015-07-08

ALT-PU-2015-1598-1

Closed vulnerabilities

BDU:2015-10660

BDU:2015-10661

CVE-2015-5119