Adobe Flash Player Use After Free Remote Code Execution Vulnerability (CVE-2015-0308)
Schweregrad: : Crítico
Identificador(es) CVE: : 2015-0308,apsb15-01
Data do informe: 21 julho 2015
Descrição
Use-after-free vulnerability in Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and before 16.0.0.272, Adobe AIR SDK before 16.0.0.272, and Adobe AIR SDK & Compiler before 16.0.0.272 allows attackers to execute arbitrary code via unspecified vectors.
Exposição das informações
Apply associated Trend Micro DPI Rules.
Solução
Trend Micro Deep Security DPI Rule Number: 1006458
Trend Micro Deep Security DPI Rule Name: 1006458 - Adobe Flash Player Use After Free Remote Code Execution Vulnerability (CVE-2015-0308)
Software infectado e versão:
- adobe adobe_air 15.0.0.356
- adobe adobe_air_sdk 15.0.0.356
- adobe adobe_air_sdk_and_compiler 15.0.0.356
- adobe flash_player 11.2.202.425
- adobe flash_player 13.0.0.259
- adobe flash_player 14.0.0.125
- adobe flash_player 14.0.0.145
- adobe flash_player 14.0.0.176
- adobe flash_player 14.0.0.179
- adobe flash_player 15.0.0.144
- adobe flash_player 15.0.0.152
- adobe flash_player 15.0.0.167
- adobe flash_player 15.0.0.189
- adobe flash_player 15.0.0.223
- adobe flash_player 15.0.0.238
- adobe flash_player 15.0.0.239
- adobe flash_player 15.0.0.246
- adobe flash_player 16.0.0.234
- adobe flash_player 16.0.0.235