Page 133 of 894 results (0.007 seconds)

CVSS: 10.0EPSS: 2%CPEs: 20EXPL: 0

CVE-2015-0342 – flash-plugin: multiple code execution issues fixed in APSB15-05

https://notcve.org/view.php?id=CVE-2015-0342

Use-after-free vulnerability in Adobe Flash Player before 13.0.0.277 and 14.x through 17.x before 17.0.0.134 on Windows and OS X and before 11.2.202.451 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-0341. Vulnerabilidad de uso después de liberación en Adobe Flash Player anterior a 13.0.0.277 y 14.x a través de 17.x anterior a 17.0.0.134 en Windows y OS X y anterior a 11.2.202.451 en Linux permite a atacantes ejecutar código arbitrario a través de vectores sin especificar, una vulnerabilidad diferente a CVE-2015-0341. • http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00014.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00015.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00016.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00017.html http://rhn.redhat.com/errata/RHSA-2015-0697.html http://www.securitytracker.com/id/1031922 https://helpx.adobe.com/security/products/flash-player/apsb15-05.html https://security.gentoo.org/glsa/2015 •

CVSS: 9.3EPSS: 96%CPEs: 20EXPL: 1

CVE-2015-0336 – Adobe Flash Player - NetConnection Type Confusion

https://notcve.org/view.php?id=CVE-2015-0336

Adobe Flash Player before 13.0.0.277 and 14.x through 17.x before 17.0.0.134 on Windows and OS X and before 11.2.202.451 on Linux allows attackers to execute arbitrary code by leveraging an unspecified "type confusion," a different vulnerability than CVE-2015-0334. Adobe Flash Player anterior a 13.0.0.277 y 14.x a través de 17.x anterior a 17.0.0.134 en Windows y OS X y anterior a 11.2.202.451 en Linux permite a atacantes ejecutar código arbitrario aprovechando una 'confusión de tipos' no especificados, una vulnerabilidad diferente de CVE-2015-0334. • https://www.exploit-db.com/exploits/36962 http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00014.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00015.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00016.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00017.html http://rhn.redhat.com/errata/RHSA-2015-0697.html http://www.securityfocus.com/bid/73084 http://www.securitytracker.com/id/1031922 https://helpx.adobe •

CVSS: 5.0EPSS: 0%CPEs: 20EXPL: 0

CVE-2015-0337 – flash-plugin: cross-domain policy bypass (APSB15-05)

https://notcve.org/view.php?id=CVE-2015-0337

Adobe Flash Player before 13.0.0.277 and 14.x through 17.x before 17.0.0.134 on Windows and OS X and before 11.2.202.451 on Linux allows remote attackers to bypass the Same Origin Policy via unspecified vectors. Adobe Flash Player anterior a 13.0.0.277 y 14.x a través de 17.x anterior a 17.0.0.134 en Windows y OS X y anterior a 11.2.202.451 en Linux permite a atacantes remotos evadir Same Origin Policy a través de vectores sin especificar. • http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00014.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00015.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00016.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00017.html http://rhn.redhat.com/errata/RHSA-2015-0697.html http://www.securitytracker.com/id/1031922 https://helpx.adobe.com/security/products/flash-player/apsb15-05.html https://security.gentoo.org/glsa/2015 • CWE-264: Permissions, Privileges, and Access Controls •

CVSS: 5.0EPSS: 0%CPEs: 20EXPL: 0

CVE-2015-0340 – flash-plugin: file upload restriction bypass (APSB15-05)

https://notcve.org/view.php?id=CVE-2015-0340

Adobe Flash Player before 13.0.0.277 and 14.x through 17.x before 17.0.0.134 on Windows and OS X and before 11.2.202.451 on Linux allows remote attackers to bypass intended file-upload restrictions via unspecified vectors. Adobe Flash Player anterior a 13.0.0.277 y 14.x a través de 17.x anterior a 17.0.0.134 en Windows y OS X y anterior a 11.2.202.451 en Linux permite a atacantes remotos evadir las restricciones de carga de ficheros a través de vectores no especificados. • http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00014.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00015.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00016.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00017.html http://rhn.redhat.com/errata/RHSA-2015-0697.html http://www.securitytracker.com/id/1031922 https://helpx.adobe.com/security/products/flash-player/apsb15-05.html https://security.gentoo.org/glsa/2015 •

CVSS: 10.0EPSS: 1%CPEs: 20EXPL: 0

CVE-2015-0339 – flash-plugin: multiple code execution issues fixed in APSB15-05

https://notcve.org/view.php?id=CVE-2015-0339

Adobe Flash Player before 13.0.0.277 and 14.x through 17.x before 17.0.0.134 on Windows and OS X and before 11.2.202.451 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-0332, CVE-2015-0333, and CVE-2015-0335. Adobe Flash Player anterior a 13.0.0.277 y 14.x a través de 17.x anterior a 17.0.0.134 en Windows y OS X y anterior a 11.2.202.451 en Linux permite a atacantes ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria) a través de vectores sin especificar, una vulnerabilidad diferente a CVE-2015-0332, CVE-2015-0333, y CVE-2015-0335. • http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00014.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00015.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00016.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00017.html http://rhn.redhat.com/errata/RHSA-2015-0697.html http://www.securitytracker.com/id/1031922 https://helpx.adobe.com/security/products/flash-player/apsb15-05.html https://security.gentoo.org/glsa/2015 • CWE-399: Resource Management Errors •