Page 134 of 894 results (0.009 seconds)

CVSS: 9.3EPSS: 2%CPEs: 20EXPL: 0

CVE-2015-0334 – flash-plugin: multiple code execution issues fixed in APSB15-05

https://notcve.org/view.php?id=CVE-2015-0334

Adobe Flash Player before 13.0.0.277 and 14.x through 17.x before 17.0.0.134 on Windows and OS X and before 11.2.202.451 on Linux allows attackers to execute arbitrary code by leveraging an unspecified "type confusion," a different vulnerability than CVE-2015-0336. Adobe Flash Player anterior a 13.0.0.277 y 14.x a través de 17.x anterior a 17.0.0.134 en Windows y OS X y anterior a 11.2.202.451 en Linux permite a atacantes ejecutar código arbitrario aprovechando una 'confusión de tipos' no especificados, una vulnerabilidad diferente de CVE-2015-0336. • http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00014.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00015.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00016.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00017.html http://rhn.redhat.com/errata/RHSA-2015-0697.html http://www.securitytracker.com/id/1031922 https://helpx.adobe.com/security/products/flash-player/apsb15-05.html https://security.gentoo.org/glsa/2015 •

CVSS: 10.0EPSS: 2%CPEs: 20EXPL: 0

CVE-2015-0338 – flash-plugin: multiple code execution issues fixed in APSB15-05

https://notcve.org/view.php?id=CVE-2015-0338

Integer overflow in Adobe Flash Player before 13.0.0.277 and 14.x through 17.x before 17.0.0.134 on Windows and OS X and before 11.2.202.451 on Linux allows attackers to execute arbitrary code via unspecified vectors. Desbordamiento de enteros en Adobe Flash Player anterior a 13.0.0.277 y 14.x a través de 17.x anteior a 17.0.0.134 en Windows y OS X y anterior a 11.2.202.451 en Linux permite a atacantes ejecutar código arbitrario a través de vectores no especificados. • http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00014.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00015.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00016.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00017.html http://rhn.redhat.com/errata/RHSA-2015-0697.html http://www.securitytracker.com/id/1031922 https://helpx.adobe.com/security/products/flash-player/apsb15-05.html https://security.gentoo.org/glsa/2015 •

CVSS: 9.3EPSS: 96%CPEs: 20EXPL: 1

CVE-2015-0336 – Adobe Flash Player - NetConnection Type Confusion

https://notcve.org/view.php?id=CVE-2015-0336

Adobe Flash Player before 13.0.0.277 and 14.x through 17.x before 17.0.0.134 on Windows and OS X and before 11.2.202.451 on Linux allows attackers to execute arbitrary code by leveraging an unspecified "type confusion," a different vulnerability than CVE-2015-0334. Adobe Flash Player anterior a 13.0.0.277 y 14.x a través de 17.x anterior a 17.0.0.134 en Windows y OS X y anterior a 11.2.202.451 en Linux permite a atacantes ejecutar código arbitrario aprovechando una 'confusión de tipos' no especificados, una vulnerabilidad diferente de CVE-2015-0334. • https://www.exploit-db.com/exploits/36962 http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00014.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00015.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00016.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00017.html http://rhn.redhat.com/errata/RHSA-2015-0697.html http://www.securityfocus.com/bid/73084 http://www.securitytracker.com/id/1031922 https://helpx.adobe •

CVSS: 5.0EPSS: 0%CPEs: 20EXPL: 0

CVE-2015-0337 – flash-plugin: cross-domain policy bypass (APSB15-05)

https://notcve.org/view.php?id=CVE-2015-0337

Adobe Flash Player before 13.0.0.277 and 14.x through 17.x before 17.0.0.134 on Windows and OS X and before 11.2.202.451 on Linux allows remote attackers to bypass the Same Origin Policy via unspecified vectors. Adobe Flash Player anterior a 13.0.0.277 y 14.x a través de 17.x anterior a 17.0.0.134 en Windows y OS X y anterior a 11.2.202.451 en Linux permite a atacantes remotos evadir Same Origin Policy a través de vectores sin especificar. • http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00014.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00015.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00016.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00017.html http://rhn.redhat.com/errata/RHSA-2015-0697.html http://www.securitytracker.com/id/1031922 https://helpx.adobe.com/security/products/flash-player/apsb15-05.html https://security.gentoo.org/glsa/2015 • CWE-264: Permissions, Privileges, and Access Controls •

CVSS: 5.0EPSS: 0%CPEs: 20EXPL: 0

CVE-2015-0340 – flash-plugin: file upload restriction bypass (APSB15-05)

https://notcve.org/view.php?id=CVE-2015-0340

Adobe Flash Player before 13.0.0.277 and 14.x through 17.x before 17.0.0.134 on Windows and OS X and before 11.2.202.451 on Linux allows remote attackers to bypass intended file-upload restrictions via unspecified vectors. Adobe Flash Player anterior a 13.0.0.277 y 14.x a través de 17.x anterior a 17.0.0.134 en Windows y OS X y anterior a 11.2.202.451 en Linux permite a atacantes remotos evadir las restricciones de carga de ficheros a través de vectores no especificados. • http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00014.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00015.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00016.html http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00017.html http://rhn.redhat.com/errata/RHSA-2015-0697.html http://www.securitytracker.com/id/1031922 https://helpx.adobe.com/security/products/flash-player/apsb15-05.html https://security.gentoo.org/glsa/2015 •