Adobe Flash Player Remote Code Execution Vulnerability (CVE-2015-0349)

  Severity: CRITICAL
  CVE Identifier: CVE-2015-0349
  Advisory Date: JUL 08, 2015

  DESCRIPTION

Adobe Flash Player is prone to an unspecified remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the affected applications. Failed exploit attempts will likely cause a denial-of-service condition.

  TREND MICRO PROTECTION INFORMATION

Apply associated Trend Micro DPI Rules.

  SOLUTION

  PATCH: https://helpx.adobe.com/security/products/flash-player/apsb15-06.html

  Trend Micro Deep Security DPI Rule Number: 1006636
  Trend Micro Deep Security DPI Rule Name: 1006636 - Adobe Flash Player Remote Code Execution Vulnerability (CVE-2015-0349)

  AFFECTED SOFTWARE AND VERSION

  • Adobe Flash Player 11.2.202.451 and earlier on Linux
  • Adobe Flash Player 17.0.0.134 and earlier on Windows and OS X
  • Adobe Flash Player 13.0.0.277 and earlier on Windows and OS X