Page 133 of 1094 results (0.004 seconds)

CVSS: 5.0EPSS: 0%CPEs: 31EXPL: 0

CVE-2015-3040 – flash-plugin: information leaks leading to ASLR bypass (APSB15-06)

https://notcve.org/view.php?id=CVE-2015-3040

Adobe Flash Player before 13.0.0.281 and 14.x through 17.x before 17.0.0.169 on Windows and OS X and before 11.2.202.457 on Linux does not properly restrict discovery of memory addresses, which allows attackers to bypass the ASLR protection mechanism via unspecified vectors, a different vulnerability than CVE-2015-0357. Adobe Flash Player anterior a 13.0.0.281 y 14.x hasta 17.x anterior a 17.0.0.169 en Windows y OS X y anterior a 11.2.202.457 en Linux no restringe correctamente el descubrimiento de direcciones de la memoria, lo que permite a atacantes evadir el mecanismo de protección ASLR en Windows a través de vectores no especificados, una vulnerabilidad diferente a CVE-2015-0357. • http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00010.html http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00011.html http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00012.html http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00013.html http://rhn.redhat.com/errata/RHSA-2015-0813.html http://www.securitytracker.com/id/1032105 https://helpx.adobe.com/security/products/flash-player/apsb15-06.html https://security.gentoo.org/glsa/2015 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 5.0EPSS: 0%CPEs: 31EXPL: 0

CVE-2015-3044 – flash-plugin: security bypass leading to information disclosure (APSB15-06)

https://notcve.org/view.php?id=CVE-2015-3044

Adobe Flash Player before 13.0.0.281 and 14.x through 17.x before 17.0.0.169 on Windows and OS X and before 11.2.202.457 on Linux allows attackers to bypass intended access restrictions and obtain sensitive information via unspecified vectors. Adobe Flash Player anterior a 13.0.0.281 y 14.x hasta 17.x anterior a 17.0.0.169 en Windows y OS X y anterior a 11.2.202.457 en Linux permite a atacantes evadir restricciones de acceso y obtener información sensible a través de vectores no especificados. • http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00010.html http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00011.html http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00012.html http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00013.html http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00007.html http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00010.html http://lists.opensuse.org/opensuse-security-announce/2015-05 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 10.0EPSS: 2%CPEs: 20EXPL: 0

CVE-2015-0342 – flash-plugin: multiple code execution issues fixed in APSB15-05

https://notcve.org/view.php?id=CVE-2015-0342

Use-after-free vulnerability in Adobe Flash Player before 13.0.0.277 and 14.x through 17.x before 17.0.0.134 on Windows and OS X and before 11.2.202.451 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-0341. Vulnerabilidad de uso después de liberación en Adobe Flash Player anterior a 13.0.0.277 y 14.x a través de 17.x anterior a 17.0.0.134 en Windows y OS X y anterior a 11.2.202.451 en Linux permite a atacantes ejecutar código arbitrario a través de vectores sin especificar, una vulnerabilidad diferente a CVE-2015-0341. • http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00014.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00015.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00016.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00017.html http://rhn.redhat.com/errata/RHSA-2015-0697.html http://www.securitytracker.com/id/1031922 https://helpx.adobe.com/security/products/flash-player/apsb15-05.html https://security.gentoo.org/glsa/2015 •

CVSS: 9.3EPSS: 96%CPEs: 20EXPL: 1

CVE-2015-0336 – Adobe Flash Player - NetConnection Type Confusion

https://notcve.org/view.php?id=CVE-2015-0336

Adobe Flash Player before 13.0.0.277 and 14.x through 17.x before 17.0.0.134 on Windows and OS X and before 11.2.202.451 on Linux allows attackers to execute arbitrary code by leveraging an unspecified "type confusion," a different vulnerability than CVE-2015-0334. Adobe Flash Player anterior a 13.0.0.277 y 14.x a través de 17.x anterior a 17.0.0.134 en Windows y OS X y anterior a 11.2.202.451 en Linux permite a atacantes ejecutar código arbitrario aprovechando una 'confusión de tipos' no especificados, una vulnerabilidad diferente de CVE-2015-0334. • https://www.exploit-db.com/exploits/36962 http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00014.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00015.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00016.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00017.html http://rhn.redhat.com/errata/RHSA-2015-0697.html http://www.securityfocus.com/bid/73084 http://www.securitytracker.com/id/1031922 https://helpx.adobe •

CVSS: 5.0EPSS: 0%CPEs: 20EXPL: 0

CVE-2015-0337 – flash-plugin: cross-domain policy bypass (APSB15-05)

https://notcve.org/view.php?id=CVE-2015-0337

Adobe Flash Player before 13.0.0.277 and 14.x through 17.x before 17.0.0.134 on Windows and OS X and before 11.2.202.451 on Linux allows remote attackers to bypass the Same Origin Policy via unspecified vectors. Adobe Flash Player anterior a 13.0.0.277 y 14.x a través de 17.x anterior a 17.0.0.134 en Windows y OS X y anterior a 11.2.202.451 en Linux permite a atacantes remotos evadir Same Origin Policy a través de vectores sin especificar. • http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00014.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00015.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00016.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00017.html http://rhn.redhat.com/errata/RHSA-2015-0697.html http://www.securitytracker.com/id/1031922 https://helpx.adobe.com/security/products/flash-player/apsb15-05.html https://security.gentoo.org/glsa/2015 • CWE-264: Permissions, Privileges, and Access Controls •