CVE-2015-0311
CVE-2015-0311
In short
Adobe Flash Player had a security flaw that let attackers run malicious code on your computer just by visiting a compromised website. This was a serious problem because Flash was widely used in browsers.
Technical detail
An unspecified remote code execution vulnerability in Adobe Flash Player (versions 13.0.0.262 and earlier on Windows/OS X, 11.2.202.438 on Linux, and 14.x-16.0.0.287 across platforms) allowed unauthenticated remote attackers to execute arbitrary code through unknown attack vectors, with active exploitation documented in January 2015.
Summary generated and translated by AI from the official description.
Unspecified vulnerability in Adobe Flash Player through 13.0.0.262 and 14.x, 15.x, and 16.x through 16.0.0.287 on Windows and OS X and through 11.2.202.438 on Linux allows remote attackers to execute arbitrary code via unknown vectors, as exploited in the wild in January 2015.
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected products
n/a · n/apublic PoCs found — 2
githubgithub.com/jr64/CVE-2015-0311★ 0exploitdbwww.exploit-db.com/exploits/36360unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://helpx.adobe.com/security/products/flash-player/apsa15-01.htmlhttp://helpx.adobe.com/security/products/flash-player/apsb15-03.htmlhttp://lists.opensuse.org/opensuse-security-announce/2015-01/msg00027.htmlhttp://lists.opensuse.org/opensuse-security-announce/2015-01/msg00031.htmlhttp://malware.dontneedcoffee.com/2015/01/unpatched-vulnerability-0day-in-flash.htmlhttp://secunia.com/advisories/62432http://secunia.com/advisories/62543http://secunia.com/advisories/62650http://secunia.com/advisories/62660http://secunia.com/advisories/62740http://security.gentoo.org/glsa/glsa-201502-02.xmlhttps://github.com/cisagov/vulnrichment/issues/196