← back
CVE-2018-4878

CVE-2018-4878

CVSS 7.8 HIGHEPSS 89.6%● KEVCWE-416
In short

Adobe Flash Player had a memory flaw where it tried to use data that was already deleted, allowing attackers to run malicious code on your computer. This vulnerability was actively exploited by hackers in early 2018.

Technical detail

A use-after-free vulnerability in Adobe Flash Player's Primetime SDK media player component allows remote code execution through a dangling pointer in listener object handling. The attack vector is typically through malicious media content, and successful exploitation requires the victim to interact with crafted content in a vulnerable Flash context.

Summary generated and translated by AI from the official description.
A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vulnerability occurs due to a dangling pointer in the Primetime SDK related to media player handling of listener objects. A successful attack can lead to arbitrary code execution. This was exploited in the wild in January and February 2018.
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected products
n/a · Adobe Flash Player before 28.0.0.161
public PoCs found15
githubgithub.com/vysecurity/CVE-2018-487886githubgithub.com/mdsecactivebreach/CVE-2018-487823githubgithub.com/SyFi/CVE-2018-48787githubgithub.com/B0fH/CVE-2018-48782githubgithub.com/ydl555/CVE-2018-4878-1githubgithub.com/HuanWoWeiLan/SoftwareSystemSecurity-20191githubgithub.com/KathodeN/CVE-2018-48780githubgithub.com/demonsec666/CVE-2018-48780githubgithub.com/lvyoshino/CVE-2018-48780githubgithub.com/ydl555/CVE-2018-48780githubgithub.com/Yable/CVE-2018-48780exploitdbwww.exploit-db.com/exploits/44745unverifiedexploitdbwww.exploit-db.com/exploits/44412unverifiedexploitdbwww.exploit-db.com/exploits/44744unverifiedcve_referencewww.exploit-db.com/exploits/44412/unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://blog.talosintelligence.com/2018/02/group-123-goes-wild.htmlhttps://access.redhat.com/errata/RHSA-2018:0285https://blog.morphisec.com/flash-exploit-cve-2018-4878-spotted-in-the-wild-massive-malspam-campaignhttps://github.com/cisagov/vulnrichment/issues/196https://github.com/InQuest/malware-samples/tree/master/CVE-2018-4878-Adobe-Flash-DRM-UAF-0dayhttps://github.com/vysec/CVE-2018-4878https://helpx.adobe.com/security/products/flash-player/apsb18-03.htmlhttps://securingtomorrow.mcafee.com/mcafee-labs/hackers-bypassed-adobe-flash-protection-mechanism/https://threatpost.com/adobe-flash-player-zero-day-spotted-in-the-wild/129742/https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-4878https://www.darkreading.com/threat-intelligence/adobe-flash-vulnerability-reappears-in-malicious-word-files/d/d-id/1331139https://www.exploit-db.com/exploits/44412/