Vulnerabilities > CVE-2015-5565 - Use After Free Remote Code Execution vulnerability in Adobe Flash Player and AIR APSB15-19

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

critical

nessus

NVD

Published: 2015-08-14

Updated: 2018-01-05

Summary

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.232 on Windows and OS X and before 11.2.202.508 on Linux, Adobe AIR before 18.0.0.199, Adobe AIR SDK before 18.0.0.199, and Adobe AIR SDK & Compiler before 18.0.0.199 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-5127, CVE-2015-5130, CVE-2015-5134, CVE-2015-5539, CVE-2015-5540, CVE-2015-5550, CVE-2015-5551, CVE-2015-5556, CVE-2015-5557, CVE-2015-5559, CVE-2015-5561, CVE-2015-5563, and CVE-2015-5564. <a href="http://cwe.mitre.org/data/definitions/416.html">CWE-416: Use After Free</a>

Vulnerable Configurations

Part	Description	Count
Application	Adobe Adobe AIR 2.0.0 Adobe AIR 2.5 Adobe AIR 2.5.1 Adobe AIR 2.6 Adobe AIR 2.7.0.1948 Adobe AIR 2.7.0.1953 Adobe AIR 2.7.1.1961 Adobe AIR 3.2 Adobe AIR 3.2.0.2070 Adobe AIR 3.3 Adobe AIR 3.4 Adobe AIR 3.5 Adobe AIR 3.9.0.1380 Adobe AIR 11.0.1.153 Adobe AIR 11.0.1.1152 Adobe AIR 11.2.202.424 Adobe AIR 13.0.0.258 Adobe AIR 14.0.0.178 Adobe AIR 15.0.0.239 Adobe AIR 15.0.0.242 Adobe AIR 15.0.0.246 Adobe AIR 15.0.0.293 Adobe AIR 15.0.0.356 Adobe AIR 17.0.0.144 Adobe AIR 17.0.0.172 Adobe AIR 18.0.0.180 Adobe AIR SDK 3.0.0.4080 Adobe AIR SDK 3.4.0.2540 Adobe AIR SDK 3.4.0.2710 Adobe AIR SDK 3.5.0.600 Adobe AIR SDK 3.5.0.890 Adobe AIR SDK 3.5.0.1060 Adobe AIR SDK 3.6.0.6090 Adobe AIR SDK 3.7.2090 Adobe AIR SDK 3.8.0.1430 Adobe AIR SDK 3.9.0.1380 Adobe AIR SDK 4.0.0.1390 Adobe AIR SDK 4.0.0.1628 Adobe AIR SDK 13.0.0.111 Adobe AIR SDK 14.0.0.178 Adobe AIR SDK 15.0.0.302 Adobe AIR SDK 15.0.0.356 Adobe AIR SDK 17.0.0.144 Adobe AIR SDK 17.0.0.172 Adobe AIR SDK 18.0.0.180 Adobe AIR SDK & Compiler 3.6.0.6090 Adobe AIR SDK & Compiler 3.7.0.2090 Adobe AIR SDK & Compiler 3.7.0.2100 Adobe AIR SDK & Compiler 3.8.0.1430 Adobe AIR SDK & Compiler 3.9.0.1380 Adobe AIR SDK & Compiler 4.0.0.1628 Adobe AIR SDK & Compiler 13.0.0.111 Adobe AIR SDK & Compiler 14.0.0.178 Adobe AIR SDK & Compiler 15.0.0.302 Adobe AIR SDK & Compiler 15.0.0.356 Adobe AIR SDK & Compiler 17.0.0.144 Adobe AIR SDK & Compiler 17.0.0.172 Adobe AIR SDK & Compiler 18.0.0.180 Adobe Flash Player - Adobe Flash Player 2 Adobe Flash Player 3 Adobe Flash Player 4 Adobe Flash Player 5 Adobe Flash Player 6 Adobe Flash Player 6.0.21.0 Adobe Flash Player 6.0.79 Adobe Flash Player 7 Adobe Flash Player 7.0 Adobe Flash Player 7.0.1 Adobe Flash Player 7.0.14.0 Adobe Flash Player 7.0.19.0 Adobe Flash Player 7.0.24.0 Adobe Flash Player 7.0.25 Adobe Flash Player 7.0.53.0 Adobe Flash Player 7.0.60.0 Adobe Flash Player 7.0.61.0 Adobe Flash Player 7.0.63 Adobe Flash Player 7.0.66.0 Adobe Flash Player 7.0.67.0 Adobe Flash Player 7.0.68.0 Adobe Flash Player 7.0.69.0 Adobe Flash Player 7.0.70.0 Adobe Flash Player 7.0.73.0 Adobe Flash Player 7.1 Adobe Flash Player 7.1.1 Adobe Flash Player 7.2 Adobe Flash Player 8 Adobe Flash Player 8.0 Adobe Flash Player 8.0.22.0 Adobe Flash Player 8.0.24.0 Adobe Flash Player 8.0.33.0 Adobe Flash Player 8.0.34.0 Adobe Flash Player 8.0.35.0 Adobe Flash Player 8.0.39.0 Adobe Flash Player 8.0.42.0 Adobe Flash Player 9 Adobe Flash Player 9.0 Adobe Flash Player 9.0.8.0 Adobe Flash Player 9.0.9.0 Adobe Flash Player 9.0.16 Adobe Flash Player 9.0.16.0 Adobe Flash Player 9.0.18D60 Adobe Flash Player 9.0.20 Adobe Flash Player 9.0.20.0 Adobe Flash Player 9.0.28 Adobe Flash Player 9.0.28.0 Adobe Flash Player 9.0.31 Adobe Flash Player 9.0.31.0 Adobe Flash Player 9.0.45.0 Adobe Flash Player 9.0.47.0 Adobe Flash Player 9.0.48.0 Adobe Flash Player 9.0.112.0 Adobe Flash Player 9.0.114.0 Adobe Flash Player 9.0.115.0 Adobe Flash Player 9.0.124.0 Adobe Flash Player 9.0.125.0 Adobe Flash Player 9.0.151.0 Adobe Flash Player 9.0.152.0 Adobe Flash Player 9.0.155.0 Adobe Flash Player 9.0.159.0 Adobe Flash Player 9.0.246.0 Adobe Flash Player 9.0.260.0 Adobe Flash Player 9.0.262.0 Adobe Flash Player 9.0.277.0 Adobe Flash Player 9.0.280 Adobe Flash Player 9.0.283.0 Adobe Flash Player 9.0.289.0 Adobe Flash Player 9.125.0 Adobe Flash Player 10 Adobe Flash Player 10.0.0.584 Adobe Flash Player 10.0.2.54 Adobe Flash Player 10.0.12.10 Adobe Flash Player 10.0.12.36 Adobe Flash Player 10.0.15.3 Adobe Flash Player 10.0.22.87 Adobe Flash Player 10.0.32.18 Adobe Flash Player 10.0.42.34 Adobe Flash Player 10.0.45.2 Adobe Flash Player 10.1 Adobe Flash Player 10.1.52.14 Adobe Flash Player 10.1.52.14.1 Adobe Flash Player 10.1.52.15 Adobe Flash Player 10.1.53.64 Adobe Flash Player 10.1.82.76 Adobe Flash Player 10.1.85.3 Adobe Flash Player 10.1.92.8 Adobe Flash Player 10.1.92.10 Adobe Flash Player 10.1.95.1 Adobe Flash Player 10.1.95.2 Adobe Flash Player 10.1.102.64 Adobe Flash Player 10.1.105.6 Adobe Flash Player 10.1.106.16 Adobe Flash Player 10.1.106.17 Adobe Flash Player 10.2.152 Adobe Flash Player 10.2.152.26 Adobe Flash Player 10.2.152.32 Adobe Flash Player 10.2.152.33 Adobe Flash Player 10.2.153.1 Adobe Flash Player 10.2.154.13 Adobe Flash Player 10.2.154.25 Adobe Flash Player 10.2.156.12 Adobe Flash Player 10.2.157.51 Adobe Flash Player 10.2.159.1 Adobe Flash Player 10.3 Adobe Flash Player 10.3.181.14 Adobe Flash Player 10.3.181.16 Adobe Flash Player 10.3.181.22 Adobe Flash Player 10.3.181.23 Adobe Flash Player 10.3.181.26 Adobe Flash Player 10.3.181.34 Adobe Flash Player 10.3.183.5 Adobe Flash Player 10.3.183.7 Adobe Flash Player 10.3.183.10 Adobe Flash Player 10.3.183.11 Adobe Flash Player 10.3.183.15 Adobe Flash Player 10.3.183.16 Adobe Flash Player 10.3.183.18 Adobe Flash Player 10.3.183.19 Adobe Flash Player 10.3.183.20 Adobe Flash Player 10.3.183.23 Adobe Flash Player 10.3.183.25 Adobe Flash Player 10.3.183.29 Adobe Flash Player 10.3.183.43 Adobe Flash Player 10.3.183.48 Adobe Flash Player 10.3.183.50 Adobe Flash Player 10.3.183.51 Adobe Flash Player 10.3.183.61 Adobe Flash Player 10.3.183.63 Adobe Flash Player 10.3.183.67 Adobe Flash Player 10.3.183.68 Adobe Flash Player 10.3.183.75 Adobe Flash Player 10.3.183.86 Adobe Flash Player 10.3.183.90 Adobe Flash Player 10.3.185.22 Adobe Flash Player 10.3.185.24 Adobe Flash Player 10.3.186.3 Adobe Flash Player 10.3.186.6 Adobe Flash Player 10.3.186.7 Adobe Flash Player 11.0 Adobe Flash Player 11.0.1.152 Adobe Flash Player 11.0.1.153 Adobe Flash Player 11.1 Adobe Flash Player 11.1.102.55 Adobe Flash Player 11.1.102.59 Adobe Flash Player 11.1.102.62 Adobe Flash Player 11.1.102.63 Adobe Flash Player 11.1.111.8 Adobe Flash Player 11.1.111.13 Adobe Flash Player 11.1.111.44 Adobe Flash Player 11.1.111.50 Adobe Flash Player 11.1.111.54 Adobe Flash Player 11.1.111.64 Adobe Flash Player 11.1.111.73 Adobe Flash Player 11.1.115.7 Adobe Flash Player 11.1.115.34 Adobe Flash Player 11.1.115.48 Adobe Flash Player 11.1.115.54 Adobe Flash Player 11.1.115.58 Adobe Flash Player 11.1.115.59 Adobe Flash Player 11.1.115.63 Adobe Flash Player 11.1.115.69 Adobe Flash Player 11.1.115.81 Adobe Flash Player 11.2.202.223 Adobe Flash Player 11.2.202.228 Adobe Flash Player 11.2.202.229 Adobe Flash Player 11.2.202.233 Adobe Flash Player 11.2.202.235 Adobe Flash Player 11.2.202.236 Adobe Flash Player 11.2.202.238 Adobe Flash Player 11.2.202.243 Adobe Flash Player 11.2.202.251 Adobe Flash Player 11.2.202.258 Adobe Flash Player 11.2.202.261 Adobe Flash Player 11.2.202.262 Adobe Flash Player 11.2.202.270 Adobe Flash Player 11.2.202.273 Adobe Flash Player 11.2.202.275 Adobe Flash Player 11.2.202.280 Adobe Flash Player 11.2.202.285 Adobe Flash Player 11.2.202.291 Adobe Flash Player 11.2.202.297 Adobe Flash Player 11.2.202.310 Adobe Flash Player 11.2.202.327 Adobe Flash Player 11.2.202.332 Adobe Flash Player 11.2.202.335 Adobe Flash Player 11.2.202.336 Adobe Flash Player 11.2.202.341 Adobe Flash Player 11.2.202.346 Adobe Flash Player 11.2.202.350 Adobe Flash Player 11.2.202.356 Adobe Flash Player 11.2.202.359 Adobe Flash Player 11.2.202.378 Adobe Flash Player 11.2.202.394 Adobe Flash Player 11.2.202.400 Adobe Flash Player 11.2.202.406 Adobe Flash Player 11.2.202.411 Adobe Flash Player 11.2.202.418 Adobe Flash Player 11.2.202.424 Adobe Flash Player 11.2.202.425 Adobe Flash Player 11.2.202.429 Adobe Flash Player 11.2.202.438 Adobe Flash Player 11.2.202.440 Adobe Flash Player 11.2.202.442 Adobe Flash Player 11.2.202.451 Adobe Flash Player 11.2.202.457 Adobe Flash Player 11.2.202.460 Adobe Flash Player 11.2.202.466 Adobe Flash Player 11.2.202.468 Adobe Flash Player 11.2.202.475 Adobe Flash Player 11.2.202.481 Adobe Flash Player 11.2.202.491 Adobe Flash Player 11.2.202.508 Adobe Flash Player 11.2.202.521 Adobe Flash Player 11.2.202.535 Adobe Flash Player 11.2.202.540 Adobe Flash Player 11.2.202.548 Adobe Flash Player 11.2.202.554 Adobe Flash Player 11.2.202.559 Adobe Flash Player 11.2.202.569 Adobe Flash Player 11.2.202.577 Adobe Flash Player 11.2.202.616 Adobe Flash Player 11.2.202.621 Adobe Flash Player 11.2.202.626 Adobe Flash Player 11.2.202.632 Adobe Flash Player 11.2.202.635 Adobe Flash Player 11.2.202.637 Adobe Flash Player 11.2.202.643 Adobe Flash Player 11.2.202.644 Adobe Flash Player 11.3.300.257 Adobe Flash Player 11.3.300.262 Adobe Flash Player 11.3.300.265 Adobe Flash Player 11.3.300.268 Adobe Flash Player 11.3.300.270 Adobe Flash Player 11.3.300.271 Adobe Flash Player 11.3.300.273 Adobe Flash Player 11.4.402.265 Adobe Flash Player 11.4.402.278 Adobe Flash Player 11.4.402.287 Adobe Flash Player 11.5.502.110 Adobe Flash Player 11.5.502.135 Adobe Flash Player 11.5.502.136 Adobe Flash Player 11.5.502.146 Adobe Flash Player 11.5.502.149 Adobe Flash Player 11.6.602.167 Adobe Flash Player 11.6.602.168 Adobe Flash Player 11.6.602.171 Adobe Flash Player 11.6.602.180 Adobe Flash Player 11.7.700.169 Adobe Flash Player 11.7.700.202 Adobe Flash Player 11.7.700.203 Adobe Flash Player 11.7.700.224 Adobe Flash Player 11.7.700.225 Adobe Flash Player 11.7.700.232 Adobe Flash Player 11.7.700.242 Adobe Flash Player 11.7.700.252 Adobe Flash Player 11.7.700.257 Adobe Flash Player 11.7.700.260 Adobe Flash Player 11.7.700.261 Adobe Flash Player 11.7.700.269 Adobe Flash Player 11.7.700.272 Adobe Flash Player 11.7.700.275 Adobe Flash Player 11.7.700.279 Adobe Flash Player 11.8.800.94 Adobe Flash Player 11.8.800.97 Adobe Flash Player 11.8.800.168 Adobe Flash Player 11.8.800.174 Adobe Flash Player 11.8.800.175 Adobe Flash Player 11.9.900.117 Adobe Flash Player 11.9.900.152 Adobe Flash Player 11.9.900.170 Adobe Flash Player 11.9.900.700 Adobe Flash Player 12.0.0.38 Adobe Flash Player 12.0.0.41 Adobe Flash Player 12.0.0.43 Adobe Flash Player 12.0.0.44 Adobe Flash Player 12.0.0.70 Adobe Flash Player 12.0.0.77 Adobe Flash Player 13.0 Adobe Flash Player 13.0.0.182 Adobe Flash Player 13.0.0.201 Adobe Flash Player 13.0.0.206 Adobe Flash Player 13.0.0.214 Adobe Flash Player 13.0.0.223 Adobe Flash Player 13.0.0.231 Adobe Flash Player 13.0.0.241 Adobe Flash Player 13.0.0.244 Adobe Flash Player 13.0.0.250 Adobe Flash Player 13.0.0.252 Adobe Flash Player 13.0.0.258 Adobe Flash Player 13.0.0.259 Adobe Flash Player 13.0.0.260 Adobe Flash Player 13.0.0.262 Adobe Flash Player 13.0.0.264 Adobe Flash Player 13.0.0.269 Adobe Flash Player 13.0.0.277 Adobe Flash Player 13.0.0.281 Adobe Flash Player 13.0.0.289 Adobe Flash Player 13.0.0.292 Adobe Flash Player 13.0.0.296 Adobe Flash Player 13.0.0.302 Adobe Flash Player 13.0.0.309 Adobe Flash Player 14.0.0.125 Adobe Flash Player 14.0.0.145 Adobe Flash Player 14.0.0.176 Adobe Flash Player 14.0.0.179 Adobe Flash Player 15.0.0.152 Adobe Flash Player 15.0.0.167 Adobe Flash Player 15.0.0.189 Adobe Flash Player 15.0.0.223 Adobe Flash Player 15.0.0.239 Adobe Flash Player 15.0.0.246 Adobe Flash Player 16.0.0.234 Adobe Flash Player 16.0.0.235 Adobe Flash Player 16.0.0.257 Adobe Flash Player 16.0.0.287 Adobe Flash Player 16.0.0.296 Adobe Flash Player 16.0.0.305 Adobe Flash Player 17.0.0.134 Adobe Flash Player 17.0.0.169 Adobe Flash Player 17.0.0.188 Adobe Flash Player 17.0.0.190 Adobe Flash Player 17.0.0.191 Adobe Flash Player 18.0 Adobe Flash Player 18.0.0.160 Adobe Flash Player 18.0.0.161 Adobe Flash Player 18.0.0.194 Adobe Flash Player 18.0.0.203 Adobe Flash Player 18.0.0.204 Adobe Flash Player 18.0.0.209	402
OS	Linux Linux Linux Kernel -	1
OS	Apple Apple MAC OS X -	1
OS	Microsoft Microsoft Windows -	1

Nessus

NASL family	Red Hat Local Security Checks
NASL id	REDHAT-RHSA-2015-1603.NASL
description	An updated Adobe Flash Player package that fixes multiple security issues is now available for Red Hat Enterprise Linux 5 and 6 Supplementary. Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. This update fixes multiple vulnerabilities in Adobe Flash Player. These vulnerabilities are detailed in the Adobe Security Bulletin APSB15-19 listed in the References section. Multiple flaws were found in the way flash-plugin displayed certain SWF content. An attacker could use these flaws to create a specially crafted SWF file that would cause flash-plugin to crash or, potentially, execute arbitrary code when the victim loaded a page containing the malicious SWF content. (CVE-2015-5127, CVE-2015-5128, CVE-2015-5129, CVE-2015-5130, CVE-2015-5131, CVE-2015-5132, CVE-2015-5133, CVE-2015-5134, CVE-2015-5539, CVE-2015-5540, CVE-2015-5541, CVE-2015-5544, CVE-2015-5545, CVE-2015-5546, CVE-2015-5547, CVE-2015-5548, CVE-2015-5549, CVE-2015-5550, CVE-2015-5551, CVE-2015-5552, CVE-2015-5553, CVE-2015-5554, CVE-2015-5555, CVE-2015-5556, CVE-2015-5557, CVE-2015-5558, CVE-2015-5559, CVE-2015-5560, CVE-2015-5561, CVE-2015-5562, CVE-2015-5563, CVE-2015-5564) All users of Adobe Flash Player should install this updated package, which upgrades Flash Player to version 11.2.202.508.
last seen	2020-06-01
modified	2020-06-02
plugin id	85372
published	2015-08-13
reporter	This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/85372
title	RHEL 5 / 6 : flash-plugin (RHSA-2015:1603)

NASL family	Windows
NASL id	SMB_KB3087916.NASL
description	The remote Windows host is missing KB3087916. It is, therefore, affected by multiple remote code execution vulnerabilities : - Multiple type confusion errors exist that allow an attacker to execute arbitrary code. (CVE-2015-5128, CVE-2015-5554, CVE-2015-5555, CVE-2015-5558, CVE-2015-5562) - An unspecified vulnerability exists related to vector length corruptions. (CVE-2015-5125) - Multiple user-after-free errors exist that allow an attacker to execute arbitrary code. (CVE-2015-5550, CVE-2015-5551, CVE-2015-3107, CVE-2015-5556, CVE-2015-5130, CVE-2015-5134, CVE-2015-5539, CVE-2015-5540, CVE-2015-5557, CVE-2015-5559, CVE-2015-5127, CVE-2015-5563, CVE-2015-5561, CVE-2015-5564, CVE-2015-5565, CVE-2015-5566) - Multiple heap buffer overflow conditions exist that allow an attacker to execute arbitrary code. (CVE-2015-5129, CVE-2015-5541) - Multiple buffer overflow conditions exist that allow an attacker to execute arbitrary code. (CVE-2015-5131, CVE-2015-5132, CVE-2015-5133) - Multiple memory corruption issues exist that allow an attacker to execute arbitrary code. (CVE-2015-5544, CVE-2015-5545, CVE-2015-5546, CVE-2015-5547, CVE-2015-5548, CVE-2015-5549, CVE-2015-5552, CVE-2015-5553) - An integer overflow condition exists that allows an attacker to execute arbitrary code. (CVE-2015-5560)
last seen	2020-06-01
modified	2020-06-02
plugin id	85329
published	2015-08-11
reporter	This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/85329
title	MS KB3087916: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer

NASL family	Windows
NASL id	GOOGLE_CHROME_44_0_2403_155.NASL
description	The version of Google Chrome installed on the remote Windows host is prior to 44.0.2403.155. It is, therefore, affected by multiple vulnerabilities : - Multiple type confusion errors exist that allow an attacker to execute arbitrary code. (CVE-2015-5128, CVE-2015-5554, CVE-2015-5555, CVE-2015-5558, CVE-2015-5562) - An unspecified vulnerability exists related to vector length corruptions. (CVE-2015-5125) - Multiple user-after-free errors exist that allow an attacker to execute arbitrary code. (CVE-2015-5550, CVE-2015-5551, CVE-2015-3107, CVE-2015-5556, CVE-2015-5130, CVE-2015-5134, CVE-2015-5539, CVE-2015-5540, CVE-2015-5557, CVE-2015-5559, CVE-2015-5127, CVE-2015-5563, CVE-2015-5561, CVE-2015-5564, CVE-2015-5565, CVE-2015-5566) - Multiple heap buffer overflow conditions exist that allow an attacker to execute arbitrary code. (CVE-2015-5129, CVE-2015-5541) - Multiple buffer overflow conditions exist that allow an attacker to execute arbitrary code. (CVE-2015-5131, CVE-2015-5132, CVE-2015-5133) - Multiple memory corruption issues exist that allow an attacker to execute arbitrary code. (CVE-2015-5544, CVE-2015-5545, CVE-2015-5546, CVE-2015-5547, CVE-2015-5548, CVE-2015-5549, CVE-2015-5552, CVE-2015-5553) - An integer overflow condition exists that allows an attacker to execute arbitrary code. (CVE-2015-5560)
last seen	2020-06-01
modified	2020-06-02
plugin id	85567
published	2015-08-20
reporter	This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/85567
title	Google Chrome < 44.0.2403.155 Multiple Vulnerabilities

NASL family	Windows
NASL id	ADOBE_AIR_APSB15-19.NASL
description	According to its version, the installation of Adobe AIR on the remote Windows host is equal or prior to 18.0.0.180. It is, therefore, affected by multiple vulnerabilities : - Multiple type confusion errors exist that allow an attacker to execute arbitrary code. (CVE-2015-5128, CVE-2015-5554, CVE-2015-5555, CVE-2015-5558, CVE-2015-5562) - An unspecified vulnerability exists related to vector length corruptions. (CVE-2015-5125) - Multiple user-after-free errors exist that allow an attacker to execute arbitrary code. (CVE-2015-5550, CVE-2015-5551, CVE-2015-3107, CVE-2015-5556, CVE-2015-5130, CVE-2015-5134, CVE-2015-5539, CVE-2015-5540, CVE-2015-5557, CVE-2015-5559, CVE-2015-5127, CVE-2015-5563, CVE-2015-5561, CVE-2015-5564, CVE-2015-5565, CVE-2015-5566) - Multiple heap buffer overflow conditions exist that allow an attacker to execute arbitrary code. (CVE-2015-5129, CVE-2015-5541) - Multiple buffer overflow conditions exist that allow an attacker to execute arbitrary code. (CVE-2015-5131, CVE-2015-5132, CVE-2015-5133) - Multiple memory corruption issues exist that allow an attacker to execute arbitrary code. (CVE-2015-5544, CVE-2015-5545, CVE-2015-5546, CVE-2015-5547, CVE-2015-5548, CVE-2015-5549, CVE-2015-5552, CVE-2015-5553) - An integer overflow condition exists that allows an attacker to execute arbitrary code. (CVE-2015-5560)
last seen	2020-06-01
modified	2020-06-02
plugin id	85325
published	2015-08-11
reporter	This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/85325
title	Adobe AIR <= 18.0.0.180 Multiple Vulnerabilities (APSB15-19)

NASL family	Windows
NASL id	FLASH_PLAYER_APSB15-19.NASL
description	The version of Adobe Flash Player installed on the remote Windows host is equal or prior to version 18.0.0.209. It is, therefore, affected by the following vulnerabilities : - Multiple type confusion errors exist that allow an attacker to execute arbitrary code. (CVE-2015-5128, CVE-2015-5554, CVE-2015-5555, CVE-2015-5558, CVE-2015-5562) - An unspecified vulnerability exists related to vector length corruptions. (CVE-2015-5125) - Multiple user-after-free errors exist that allow an attacker to execute arbitrary code. (CVE-2015-5550, CVE-2015-5551, CVE-2015-3107, CVE-2015-5556, CVE-2015-5130, CVE-2015-5134, CVE-2015-5539, CVE-2015-5540, CVE-2015-5557, CVE-2015-5559, CVE-2015-5127, CVE-2015-5563, CVE-2015-5561, CVE-2015-5564, CVE-2015-5565, CVE-2015-5566) - Multiple heap buffer overflow conditions exist that allow an attacker to execute arbitrary code. (CVE-2015-5129, CVE-2015-5541) - Multiple buffer overflow conditions exist that allow an attacker to execute arbitrary code. (CVE-2015-5131, CVE-2015-5132, CVE-2015-5133) - Multiple memory corruption issues exist that allow an attacker to execute arbitrary code. (CVE-2015-5544, CVE-2015-5545, CVE-2015-5546, CVE-2015-5547, CVE-2015-5548, CVE-2015-5549, CVE-2015-5552, CVE-2015-5553) - An integer overflow condition exists that allows an attacker to execute arbitrary code. (CVE-2015-5560)
last seen	2020-06-01
modified	2020-06-02
plugin id	85326
published	2015-08-11
reporter	This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/85326
title	Adobe Flash Player <= 18.0.0.209 Multiple Vulnerabilities (APSB15-19)

NASL family	MacOS X Local Security Checks
NASL id	MACOSX_FLASH_PLAYER_APSB15-19.NASL
description	The version of Adobe Flash Player installed on the remote Mac OS X host is equal or prior to version 18.0.0.209. It is, therefore, affected by multiple vulnerabilities : - Multiple type confusion errors exist that allow an attacker to execute arbitrary code. (CVE-2015-5128, CVE-2015-5554, CVE-2015-5555, CVE-2015-5558, CVE-2015-5562) - An unspecified vulnerability exists related to vector length corruptions. (CVE-2015-5125) - Multiple user-after-free errors exist that allow an attacker to execute arbitrary code. (CVE-2015-5550, CVE-2015-5551, CVE-2015-3107, CVE-2015-5556, CVE-2015-5130, CVE-2015-5134, CVE-2015-5539, CVE-2015-5540, CVE-2015-5557, CVE-2015-5559, CVE-2015-5127, CVE-2015-5563, CVE-2015-5561, CVE-2015-5564, CVE-2015-5565, CVE-2015-5566) - Multiple heap buffer overflow conditions exist that allow an attacker to execute arbitrary code. (CVE-2015-5129, CVE-2015-5541) - Multiple buffer overflow conditions exist that allow an attacker to execute arbitrary code. (CVE-2015-5131, CVE-2015-5132, CVE-2015-5133) - Multiple memory corruption issues exist that allow an attacker to execute arbitrary code. (CVE-2015-5544, CVE-2015-5545, CVE-2015-5546, CVE-2015-5547, CVE-2015-5548, CVE-2015-5549, CVE-2015-5552, CVE-2015-5553) - An integer overflow condition exists that allows an attacker to execute arbitrary code. (CVE-2015-5560)
last seen	2020-06-01
modified	2020-06-02
plugin id	85328
published	2015-08-11
reporter	This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/85328
title	Adobe Flash Player <= 18.0.0.209 Multiple Vulnerabilities (APSB15-19) (Mac OS X)

NASL family	MacOS X Local Security Checks
NASL id	MACOSX_GOOGLE_CHROME_44_0_2403_155.NASL
description	The version of Google Chrome installed on the remote Mac OS X host is prior to 44.0.2403.155. It is, therefore, affected by multiple vulnerabilities : - Multiple type confusion errors exist that allow an attacker to execute arbitrary code. (CVE-2015-5128, CVE-2015-5554, CVE-2015-5555, CVE-2015-5558, CVE-2015-5562) - An unspecified vulnerability exists related to vector length corruptions. (CVE-2015-5125) - Multiple user-after-free errors exist that allow an attacker to execute arbitrary code. (CVE-2015-5550, CVE-2015-5551, CVE-2015-3107, CVE-2015-5556, CVE-2015-5130, CVE-2015-5134, CVE-2015-5539, CVE-2015-5540, CVE-2015-5557, CVE-2015-5559, CVE-2015-5127, CVE-2015-5563, CVE-2015-5561, CVE-2015-5564, CVE-2015-5565, CVE-2015-5566) - Multiple heap buffer overflow conditions exist that allow an attacker to execute arbitrary code. (CVE-2015-5129, CVE-2015-5541) - Multiple buffer overflow conditions exist that allow an attacker to execute arbitrary code. (CVE-2015-5131, CVE-2015-5132, CVE-2015-5133) - Multiple memory corruption issues exist that allow an attacker to execute arbitrary code. (CVE-2015-5544, CVE-2015-5545, CVE-2015-5546, CVE-2015-5547, CVE-2015-5548, CVE-2015-5549, CVE-2015-5552, CVE-2015-5553) - An integer overflow condition exists that allows an attacker to execute arbitrary code. (CVE-2015-5560)
last seen	2020-06-01
modified	2020-06-02
plugin id	85568
published	2015-08-20
reporter	This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/85568
title	Google Chrome < 44.0.2403.155 Multiple Vulnerabilities (Mac OS X)

NASL family	MacOS X Local Security Checks
NASL id	MACOSX_ADOBE_AIR_APSB15-19.NASL
description	According to its version, the installation of Adobe AIR on the remote Mac OS X host is equal or prior to 18.0.0.180. It is, therefore, affected by multiple vulnerabilities : - Multiple type confusion errors exist that allow an attacker to execute arbitrary code. (CVE-2015-5128, CVE-2015-5554, CVE-2015-5555, CVE-2015-5558, CVE-2015-5562) - An unspecified vulnerability exists related to vector length corruptions. (CVE-2015-5125) - Multiple user-after-free errors exist that allow an attacker to execute arbitrary code. (CVE-2015-5550, CVE-2015-5551, CVE-2015-3107, CVE-2015-5556, CVE-2015-5130, CVE-2015-5134, CVE-2015-5539, CVE-2015-5540, CVE-2015-5557, CVE-2015-5559, CVE-2015-5127, CVE-2015-5563, CVE-2015-5561, CVE-2015-5564, CVE-2015-5565, CVE-2015-5566) - Multiple heap buffer overflow conditions exist that allow an attacker to execute arbitrary code. (CVE-2015-5129, CVE-2015-5541) - Multiple buffer overflow conditions exist that allow an attacker to execute arbitrary code. (CVE-2015-5131, CVE-2015-5132, CVE-2015-5133) - Multiple memory corruption issues exist that allow an attacker to execute arbitrary code. (CVE-2015-5544, CVE-2015-5545, CVE-2015-5546, CVE-2015-5547, CVE-2015-5548, CVE-2015-5549, CVE-2015-5552, CVE-2015-5553) - An integer overflow condition exists that allows an attacker to execute arbitrary code. (CVE-2015-5560)
last seen	2020-06-01
modified	2020-06-02
plugin id	85327
published	2015-08-11
reporter	This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/85327
title	Adobe AIR for Mac <= 18.0.0.180 Multiple Vulnerabilities (APSB15-16)

Redhat

advisories

rhsa

id	RHSA-2015:1603

rpms

flash-plugin-0:11.2.202.508-1.el5
flash-plugin-0:11.2.202.508-1.el6_7

Summary

Vulnerable Configurations

Nessus

Redhat

References