CVE-2015-0322

flash-plugin: multiple code execution flaws (APSB15-04)

Severity Score

10.0

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Use-after-free vulnerability in Adobe Flash Player before 13.0.0.269 and 14.x through 16.x before 16.0.0.305 on Windows and OS X and before 11.2.202.442 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-0313, CVE-2015-0315, and CVE-2015-0320.

Vulnerabilidad de uso después de liberación en Adobe Flash Player anterior a 13.0.0.269 y 14.x hasta 16.x anterior a 16.0.0.305 en Windows y OS X y anteriores 11.2.202.442 en Linux permite a atacantes ejecutar código arbitrario a través de vectores no especificados, una vulnerabilidad diferente a CVE-2015-0313, CVE-2015-0315, y CVE-2015-0320.

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

Complete

Integrity

Complete

Availability

Complete

Attack Vector

Network

Attack Complexity

Medium

Authentication

None

Confidentiality

Partial

Integrity

Partial

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2014-12-01 CVE Reserved
2015-02-06 CVE Published
2024-08-02 EPSS Updated
2024-08-06 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (16)

URL	Tag	Source
http://secunia.com/advisories/62777	Third Party Advisory
http://secunia.com/advisories/62886	Third Party Advisory
http://secunia.com/advisories/62895	Third Party Advisory
http://www.securityfocus.com/bid/72514	Vdb Entry
http://www.securitytracker.com/id/1031706	Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/100699	Vdb Entry
https://technet.microsoft.com/library/security/2755801	X_refsource_confirm

URL	Date	SRC

URL	Date	SRC
https://helpx.adobe.com/security/products/flash-player/apsb15-04.html	2017-09-08

URL	Date	SRC
http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00006.html	2017-09-08
http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00007.html	2017-09-08
http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00008.html	2017-09-08
http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00009.html	2017-09-08
http://rhn.redhat.com/errata/RHSA-2015-0140.html	2017-09-08
http://security.gentoo.org/glsa/glsa-201502-02.xml	2017-09-08
https://access.redhat.com/security/cve/CVE-2015-0322	2015-02-06
https://bugzilla.redhat.com/show_bug.cgi?id=1190068	2015-02-06

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	<= 11.2.202.440 Search vendor "Adobe" for product "Flash Player" and version " <= 11.2.202.440"	-	Affected	in	Linux Search vendor "Linux"	Linux Kernel Search vendor "Linux" for product "Linux Kernel"	-	-	Safe
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	<= 13.0.0.264 Search vendor "Adobe" for product "Flash Player" and version " <= 13.0.0.264"	-	Affected	in	Apple Search vendor "Apple"	Mac Os X Search vendor "Apple" for product "Mac Os X"	-	-	Safe
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	<= 13.0.0.264 Search vendor "Adobe" for product "Flash Player" and version " <= 13.0.0.264"	-	Affected	in	Microsoft Search vendor "Microsoft"	Windows Search vendor "Microsoft" for product "Windows"	-	-	Safe
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	14.0.0.125 Search vendor "Adobe" for product "Flash Player" and version "14.0.0.125"	-	Affected	in	Apple Search vendor "Apple"	Mac Os X Search vendor "Apple" for product "Mac Os X"	-	-	Safe
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	14.0.0.125 Search vendor "Adobe" for product "Flash Player" and version "14.0.0.125"	-	Affected	in	Microsoft Search vendor "Microsoft"	Windows Search vendor "Microsoft" for product "Windows"	-	-	Safe
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	14.0.0.145 Search vendor "Adobe" for product "Flash Player" and version "14.0.0.145"	-	Affected	in	Apple Search vendor "Apple"	Mac Os X Search vendor "Apple" for product "Mac Os X"	-	-	Safe
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	14.0.0.145 Search vendor "Adobe" for product "Flash Player" and version "14.0.0.145"	-	Affected	in	Microsoft Search vendor "Microsoft"	Windows Search vendor "Microsoft" for product "Windows"	-	-	Safe
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	14.0.0.176 Search vendor "Adobe" for product "Flash Player" and version "14.0.0.176"	-	Affected	in	Apple Search vendor "Apple"	Mac Os X Search vendor "Apple" for product "Mac Os X"	-	-	Safe
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	14.0.0.176 Search vendor "Adobe" for product "Flash Player" and version "14.0.0.176"	-	Affected	in	Microsoft Search vendor "Microsoft"	Windows Search vendor "Microsoft" for product "Windows"	-	-	Safe
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	14.0.0.179 Search vendor "Adobe" for product "Flash Player" and version "14.0.0.179"	-	Affected	in	Apple Search vendor "Apple"	Mac Os X Search vendor "Apple" for product "Mac Os X"	-	-	Safe
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	14.0.0.179 Search vendor "Adobe" for product "Flash Player" and version "14.0.0.179"	-	Affected	in	Microsoft Search vendor "Microsoft"	Windows Search vendor "Microsoft" for product "Windows"	-	-	Safe
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	15.0.0.152 Search vendor "Adobe" for product "Flash Player" and version "15.0.0.152"	-	Affected	in	Apple Search vendor "Apple"	Mac Os X Search vendor "Apple" for product "Mac Os X"	-	-	Safe
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	15.0.0.152 Search vendor "Adobe" for product "Flash Player" and version "15.0.0.152"	-	Affected	in	Microsoft Search vendor "Microsoft"	Windows Search vendor "Microsoft" for product "Windows"	-	-	Safe
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	15.0.0.167 Search vendor "Adobe" for product "Flash Player" and version "15.0.0.167"	-	Affected	in	Apple Search vendor "Apple"	Mac Os X Search vendor "Apple" for product "Mac Os X"	-	-	Safe
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	15.0.0.167 Search vendor "Adobe" for product "Flash Player" and version "15.0.0.167"	-	Affected	in	Microsoft Search vendor "Microsoft"	Windows Search vendor "Microsoft" for product "Windows"	-	-	Safe
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	15.0.0.189 Search vendor "Adobe" for product "Flash Player" and version "15.0.0.189"	-	Affected	in	Apple Search vendor "Apple"	Mac Os X Search vendor "Apple" for product "Mac Os X"	-	-	Safe
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	15.0.0.189 Search vendor "Adobe" for product "Flash Player" and version "15.0.0.189"	-	Affected	in	Microsoft Search vendor "Microsoft"	Windows Search vendor "Microsoft" for product "Windows"	-	-	Safe
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	15.0.0.223 Search vendor "Adobe" for product "Flash Player" and version "15.0.0.223"	-	Affected	in	Apple Search vendor "Apple"	Mac Os X Search vendor "Apple" for product "Mac Os X"	-	-	Safe
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	15.0.0.223 Search vendor "Adobe" for product "Flash Player" and version "15.0.0.223"	-	Affected	in	Microsoft Search vendor "Microsoft"	Windows Search vendor "Microsoft" for product "Windows"	-	-	Safe
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	15.0.0.239 Search vendor "Adobe" for product "Flash Player" and version "15.0.0.239"	-	Affected	in	Apple Search vendor "Apple"	Mac Os X Search vendor "Apple" for product "Mac Os X"	-	-	Safe
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	15.0.0.239 Search vendor "Adobe" for product "Flash Player" and version "15.0.0.239"	-	Affected	in	Microsoft Search vendor "Microsoft"	Windows Search vendor "Microsoft" for product "Windows"	-	-	Safe
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	15.0.0.246 Search vendor "Adobe" for product "Flash Player" and version "15.0.0.246"	-	Affected	in	Apple Search vendor "Apple"	Mac Os X Search vendor "Apple" for product "Mac Os X"	-	-	Safe
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	15.0.0.246 Search vendor "Adobe" for product "Flash Player" and version "15.0.0.246"	-	Affected	in	Microsoft Search vendor "Microsoft"	Windows Search vendor "Microsoft" for product "Windows"	-	-	Safe
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	16.0.0.235 Search vendor "Adobe" for product "Flash Player" and version "16.0.0.235"	-	Affected	in	Apple Search vendor "Apple"	Mac Os X Search vendor "Apple" for product "Mac Os X"	-	-	Safe
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	16.0.0.235 Search vendor "Adobe" for product "Flash Player" and version "16.0.0.235"	-	Affected	in	Microsoft Search vendor "Microsoft"	Windows Search vendor "Microsoft" for product "Windows"	-	-	Safe
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	16.0.0.257 Search vendor "Adobe" for product "Flash Player" and version "16.0.0.257"	-	Affected	in	Apple Search vendor "Apple"	Mac Os X Search vendor "Apple" for product "Mac Os X"	-	-	Safe
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	16.0.0.257 Search vendor "Adobe" for product "Flash Player" and version "16.0.0.257"	-	Affected	in	Microsoft Search vendor "Microsoft"	Windows Search vendor "Microsoft" for product "Windows"	-	-	Safe
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	16.0.0.287 Search vendor "Adobe" for product "Flash Player" and version "16.0.0.287"	-	Affected	in	Apple Search vendor "Apple"	Mac Os X Search vendor "Apple" for product "Mac Os X"	-	-	Safe
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	16.0.0.287 Search vendor "Adobe" for product "Flash Player" and version "16.0.0.287"	-	Affected	in	Microsoft Search vendor "Microsoft"	Windows Search vendor "Microsoft" for product "Windows"	-	-	Safe
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	16.0.0.296 Search vendor "Adobe" for product "Flash Player" and version "16.0.0.296"	-	Affected	in	Apple Search vendor "Apple"	Mac Os X Search vendor "Apple" for product "Mac Os X"	-	-	Safe
Adobe Search vendor "Adobe"	Flash Player Search vendor "Adobe" for product "Flash Player"	16.0.0.296 Search vendor "Adobe" for product "Flash Player" and version "16.0.0.296"	-	Affected	in	Microsoft Search vendor "Microsoft"	Windows Search vendor "Microsoft" for product "Windows"	-	-	Safe