CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 0CVE-2020-9748 – Stack overflow vulnerability in Adobe Animate 20.5
https://notcve.org/view.php?id=CVE-2020-9748
Adobe Animate version 20.5 (and earlier) is affected by a stack overflow vulnerability, which could lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a victim must open a crafted .fla file in Animate. Adobe Animate versión 20.5 (y anteriores) está afectado por una vulnerabilidad de desbordamiento de la pila, que podría conllevar a una ejecución de código arbitraria en el contexto del usuario actual. La explotación requiere la interacción del usuario, ya que la víctima debe abrir un archivo .fla diseñado en Animate • https://helpx.adobe.com/security/products/animate/apsb20-61.html • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 38%CPEs: 1EXPL: 1CVE-2016-7866 – Adobe Animate 15.2.1.95 - Memory Corruption
https://notcve.org/view.php?id=CVE-2016-7866
Adobe Animate versions 15.2.1.95 and earlier have an exploitable memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution. Adobe Animate versión 15.2.1.95 y versiones anteriores tienen una vulnerabilidad explotable de corrupción de memoria. Una explotación exitosa puede resultar en una ejecución de código arbitrario. Adobe Animate versions 15.2.1.95 and below suffer from a buffer overflow vulnerability. • https://www.exploit-db.com/exploits/40915 http://hyp3rlinx.altervista.org/advisories/ADOBE-ANIMATE-MEMORY-CORRUPTION-VULNERABILITY.txt http://packetstormsecurity.com/files/140164/Adobe-Animate-15.2.1.95-Buffer-Overflow.html http://seclists.org/fulldisclosure/2016/Dec/45 http://www.securityfocus.com/archive/1/539923/100/0/threaded http://www.securityfocus.com/bid/94872 https://helpx.adobe.com/security/products/animate/apsb16-38.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •