CVE-2016-7867
Adobe Flash Player RegExp MARK Stack-based Buffer Overflow Remote Code Execution Vulnerability
Severity Score
Exploit Likelihood
Affected Versions
11Public Exploits
0Exploited in Wild
-Decision
Descriptions
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable buffer overflow / underflow vulnerability in the RegExp class related to bookmarking in searches. Successful exploitation could lead to arbitrary code execution.
Adobe Flash Player versión 23.0.0.207 y versiones anteriores, 11.2.202.644 y versiones anteriores tienen una vulnerabilidad explotable de desbordamiento/vaciado de búfer en la clase RegExp relacionada con marcadores en búsquedas. Una explotación exitosa puede resultar en una ejecución de código arbitrario.
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the handling of regular expressions. A crafted regular expression can trigger an overflow of a stack-based buffer. An attacker can leverage this vulnerability to execute code under the context of the current process.
The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. This update upgrades Flash Player to version 24.0.0.186. Security Fix: This update fixes multiple vulnerabilities in Adobe Flash Player. These vulnerabilities, detailed in the Adobe Security Bulletin listed in the References section, could allow an attacker to create a specially crafted SWF file that would cause flash-plugin to crash, execute arbitrary code, or disclose sensitive information when the victim loaded a page containing the malicious SWF content.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2016-09-09 CVE Reserved
- 2016-12-13 CVE Published
- 2024-08-06 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-787: Out-of-bounds Write
CAPEC
References (11)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/94871 | Broken Link | |
| http://www.securitytracker.com/id/1037442 | Broken Link | |
| http://www.zerodayinitiative.com/advisor... | Third Party Advisory |
|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://lists.opensuse.org/opensuse-security-announce/2016-... | 2022-11-16 | |
| http://lists.opensuse.org/opensuse-updates/2016-12/msg0011... | 2022-11-16 | |
| http://rhn.redhat.com/errata/RHSA-2016-2947.html | 2022-11-16 | |
| https://security.gentoo.org/glsa/201701-17 | 2022-11-16 | |
| https://access.redhat.com/security/cve/CVE-2016-7867 | 2016-12-14 | |
| https://bugzilla.redhat.com/show_bug.cgi?id=1404307 | 2016-12-14 |