[Forgot Password]
Login  Register Subscribe

23631

 
 

119700

 
 

98250

 
 

909

 
 

79281

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2016-1000

Date: (C)2016-04-28   (M)2017-11-17 


Use-after-free vulnerability in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202.577 on Linux, Adobe AIR before 21.0.0.176, Adobe AIR SDK before 21.0.0.176, and Adobe AIR SDK & Compiler before 21.0.0.176 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-0987, CVE-2016-0988, CVE-2016-0990, CVE-2016-0991, CVE-2016-0994, CVE-2016-0995, CVE-2016-0996, CVE-2016-0997, CVE-2016-0998, and CVE-2016-0999.

CVSS Score: 10.0Access Vector: NETWORK
Exploit Score: 10.0Access Complexity: LOW
Impact Score: 10.0Authentication: NONE
 Confidentiality: COMPLETE
 Integrity: COMPLETE
 Availability: COMPLETE





Reference:
SECTRACK-1035251
EXPLOIT-DB-39610
BID-84312
GLSA-201603-07
RHSA-2016:1582
RHSA-2016:1583
SUSE-SU-2016:0715
SUSE-SU-2016:0716
https://helpx.adobe.com/security/products/flash-player/apsb16-08.html
openSUSE-SU-2016:0719
openSUSE-SU-2016:0734

CPE    16
cpe:/a:adobe:air:20.0.0.260
cpe:/a:adobe:air_sdk:20.0.0.260
cpe:/a:adobe:flash_player:11.2.202.569
cpe:/a:adobe:flash_player:20.0.0.306::~~~internet_explorer~~
...
OVAL    13
oval:org.secpod.oval:def:33622
oval:org.secpod.oval:def:33623
oval:org.secpod.oval:def:1501584
oval:org.secpod.oval:def:1501587
...

© 2013 SecPod Technologies