Adobe Flash Player Use After Free Remote Code Execution Vulnerability (CVE-2015-0308)
Schweregrad:: Kritisch
CVE Kennungen:: 2015-0308,apsb15-01
Hinweisdatum: 21 Juli 2015
Beschreibung
Use-after-free vulnerability in Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and before 16.0.0.272, Adobe AIR SDK before 16.0.0.272, and Adobe AIR SDK & Compiler before 16.0.0.272 allows attackers to execute arbitrary code via unspecified vectors.
Trend Micro Lösungen
Apply associated Trend Micro DPI Rules.
Lösungen
Trend Micro Deep Security DPI Rule Number: 1006458
Trend Micro Deep Security DPI Rule Name: 1006458 - Adobe Flash Player Use After Free Remote Code Execution Vulnerability (CVE-2015-0308)
Betroffene Software und Version:
- adobe adobe_air 15.0.0.356
- adobe adobe_air_sdk 15.0.0.356
- adobe adobe_air_sdk_and_compiler 15.0.0.356
- adobe flash_player 11.2.202.425
- adobe flash_player 13.0.0.259
- adobe flash_player 14.0.0.125
- adobe flash_player 14.0.0.145
- adobe flash_player 14.0.0.176
- adobe flash_player 14.0.0.179
- adobe flash_player 15.0.0.144
- adobe flash_player 15.0.0.152
- adobe flash_player 15.0.0.167
- adobe flash_player 15.0.0.189
- adobe flash_player 15.0.0.223
- adobe flash_player 15.0.0.238
- adobe flash_player 15.0.0.239
- adobe flash_player 15.0.0.246
- adobe flash_player 16.0.0.234
- adobe flash_player 16.0.0.235