Details of VAR-201501-0115

ID

VAR-201501-0115

CVE

CVE-2015-0310

TITLE

Adobe Flash Player In ASLR Vulnerabilities that circumvent protection mechanisms

Trust: 0.8

sources: JVNDB: JVNDB-2015-001220

DESCRIPTION

Adobe Flash Player before 13.0.0.262 and 14.x through 16.x before 16.0.0.287 on Windows and OS X and before 11.2.202.438 on Linux does not properly restrict discovery of memory addresses, which allows attackers to bypass the ASLR protection mechanism on Windows, and have an unspecified impact on other platforms, via unknown vectors, as exploited in the wild in January 2015. Attacks on this vulnerability 2015 Year 1 Observed on the moon.By the attacker, Windows Above ASLR Protection mechanisms may be bypassed and may be unspecified on other platforms. Adobe Flash Player is prone to an unspecified memory-corruption vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will likely result in denial-of-service conditions. The product enables viewing of applications, content and video across screens and browsers. Background ========== The Adobe Flash Player is a renderer for the SWF file format, which is commonly used to provide interactive websites. Please review the CVE identifiers referenced below for details. Impact ====== A remote attacker could possibly execute arbitrary code with the privileges of the process, cause a Denial of Service condition, obtain sensitive information or bypass security restrictions. Workaround ========== There is no known workaround at this time. Resolution ========== All Adobe Flash Player users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot -v ">=www-plugins/adobe-flash-11.2.202.442" References ========== [ 1 ] CVE-2015-0301 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0301 [ 2 ] CVE-2015-0302 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0302 [ 3 ] CVE-2015-0303 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0303 [ 4 ] CVE-2015-0304 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0304 [ 5 ] CVE-2015-0305 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0305 [ 6 ] CVE-2015-0306 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0306 [ 7 ] CVE-2015-0307 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0307 [ 8 ] CVE-2015-0308 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0308 [ 9 ] CVE-2015-0309 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0309 [ 10 ] CVE-2015-0310 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0310 [ 11 ] CVE-2015-0311 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0311 [ 12 ] CVE-2015-0314 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0314 [ 13 ] CVE-2015-0315 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0315 [ 14 ] CVE-2015-0316 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0316 [ 15 ] CVE-2015-0317 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0317 [ 16 ] CVE-2015-0318 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0318 [ 17 ] CVE-2015-0319 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0319 [ 18 ] CVE-2015-0320 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0320 [ 19 ] CVE-2015-0321 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0321 [ 20 ] CVE-2015-0322 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0322 [ 21 ] CVE-2015-0323 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0323 [ 22 ] CVE-2015-0324 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0324 [ 23 ] CVE-2015-0325 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0325 [ 24 ] CVE-2015-0326 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0326 [ 25 ] CVE-2015-0327 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0327 [ 26 ] CVE-2015-0328 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0328 [ 27 ] CVE-2015-0329 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0329 [ 28 ] CVE-2015-0330 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-0330 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-201502-02.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org. License ======= Copyright 2015 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5 . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ===================================================================== Red Hat Security Advisory Synopsis: Critical: flash-plugin security update Advisory ID: RHSA-2015:0094-01 Product: Red Hat Enterprise Linux Supplementary Advisory URL: https://rhn.redhat.com/errata/RHSA-2015-0094.html Issue date: 2015-01-27 CVE Names: CVE-2015-0310 CVE-2015-0311 CVE-2015-0312 ===================================================================== 1. Summary: An updated Adobe Flash Player package that fixes multiple security issues is now available for Red Hat Enterprise Linux 5 and 6 Supplementary. Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Desktop Supplementary (v. 5) - i386, x86_64 Red Hat Enterprise Linux Desktop Supplementary (v. 6) - i386, x86_64 Red Hat Enterprise Linux Server Supplementary (v. 5) - i386, x86_64 Red Hat Enterprise Linux Server Supplementary (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Supplementary (v. 6) - i386, x86_64 3. Description: The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. These vulnerabilities are detailed in the Adobe Security Bulletin APSB15-02, and APSB15-03, listed in the References section. Multiple flaws were found in the way flash-plugin displayed certain SWF content. An attacker could use these flaws to create a specially crafted SWF file that would cause flash-plugin to crash or, potentially, execute arbitrary code when the victim loaded a page containing the malicious SWF content. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1185137 - CVE-2015-0310 flash-plugin: Vulnerability that could be used to circumvent memory randomization mitigations (APSB15-02) 1185296 - CVE-2015-0311 CVE-2015-0312 flash-plugin: multiple critical vulnerabilities (APSA15-01)(APSB15-03) 6. Package List: Red Hat Enterprise Linux Desktop Supplementary (v. 5): i386: flash-plugin-11.2.202.440-1.el5.i386.rpm x86_64: flash-plugin-11.2.202.440-1.el5.i386.rpm Red Hat Enterprise Linux Server Supplementary (v. 5): i386: flash-plugin-11.2.202.440-1.el5.i386.rpm x86_64: flash-plugin-11.2.202.440-1.el5.i386.rpm Red Hat Enterprise Linux Desktop Supplementary (v. 6): i386: flash-plugin-11.2.202.440-1.el6.i686.rpm x86_64: flash-plugin-11.2.202.440-1.el6.i686.rpm Red Hat Enterprise Linux Server Supplementary (v. 6): i386: flash-plugin-11.2.202.440-1.el6.i686.rpm x86_64: flash-plugin-11.2.202.440-1.el6.i686.rpm Red Hat Enterprise Linux Workstation Supplementary (v. 6): i386: flash-plugin-11.2.202.440-1.el6.i686.rpm x86_64: flash-plugin-11.2.202.440-1.el6.i686.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2015-0310 https://access.redhat.com/security/cve/CVE-2015-0311 https://access.redhat.com/security/cve/CVE-2015-0312 https://access.redhat.com/security/updates/classification/#critical https://helpx.adobe.com/security/products/flash-player/apsb15-02.html https://helpx.adobe.com/security/products/flash-player/apsb15-03.html 8. Contact: The Red Hat security contact is <secalert@redhat.com>. More contact details at https://access.redhat.com/security/team/contact/ Copyright 2015 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iD8DBQFUyAGGXlSAg2UNWIIRAi1BAJ9Q5Uq7Z9D/i5dIrMbLRMK/TUbVpQCfZhjG Xjm8B3oIdHx7wx6dzJxrEAw= =70K0 -----END PGP SIGNATURE----- -- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce

Trust: 2.25

sources: NVD: CVE-2015-0310 // JVNDB: JVNDB-2015-001220 // BID: 72261 // VULHUB: VHN-78256 // VULMON: CVE-2015-0310 // PACKETSTORM: 130262 // PACKETSTORM: 130128

AFFECTED PRODUCTS

vendor:	adobe	model:	flash player	scope:	eq	version:	15.0.0.246	Trust: 1.9
vendor:	adobe	model:	flash player	scope:	eq	version:	15.0.0.239	Trust: 1.9
vendor:	adobe	model:	flash player	scope:	eq	version:	15.0.0.223	Trust: 1.9
vendor:	adobe	model:	flash player	scope:	eq	version:	15.0.0.189	Trust: 1.9
vendor:	adobe	model:	flash player	scope:	eq	version:	14.0.0.145	Trust: 1.9
vendor:	adobe	model:	flash player	scope:	eq	version:	14.0.0.125	Trust: 1.9
vendor:	adobe	model:	flash player	scope:	eq	version:	16.0.0.235	Trust: 1.6
vendor:	adobe	model:	flash player	scope:	eq	version:	14.0.0.176	Trust: 1.6
vendor:	adobe	model:	flash player	scope:	eq	version:	16.0.0.257	Trust: 1.3
vendor:	adobe	model:	flash player	scope:	eq	version:	15.0.0.152	Trust: 1.3
vendor:	adobe	model:	flash player	scope:	lte	version:	11.2.202.429	Trust: 1.0
vendor:	adobe	model:	flash player	scope:	lte	version:	13.0.0.260	Trust: 1.0
vendor:	adobe	model:	flash player	scope:	eq	version:	14.0.0.179	Trust: 1.0
vendor:	adobe	model:	flash player	scope:	eq	version:	15.0.0.167	Trust: 1.0
vendor:	adobe	model:	flash player	scope:	eq	version:	13.0.0.260	Trust: 0.9
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.429	Trust: 0.9
vendor:	google	model:	chrome	scope:	-	version:	-	Trust: 0.8
vendor:	adobe	model:	flash player	scope:	lt	version:	11.2.202.438 (linux)	Trust: 0.8
vendor:	adobe	model:	flash player	scope:	lt	version:	16.0.0.287 (internet explorer 10/11)	Trust: 0.8
vendor:	adobe	model:	flash player	scope:	lt	version:	16.0.0.287 (windows/machintosh edition chromeos)	Trust: 0.8
vendor:	adobe	model:	flash player	scope:	lt	version:	16.0.0.291 (linux edition chromeos)	Trust: 0.8
vendor:	adobe	model:	flash player	scope:	lt	version:	desktop runtime 16.0.0.287 (windows/macintosh)	Trust: 0.8
vendor:	adobe	model:	flash player	scope:	lt	version:	continuous support release 13.0.0.262 (windows/macintosh)	Trust: 0.8
vendor:	microsoft	model:	internet explorer	scope:	eq	version:	10 (windows 8/windows server 2012/windows rt)	Trust: 0.8
vendor:	microsoft	model:	internet explorer	scope:	eq	version:	11 (windows 8.1/windows server 2012 r2/windows rt 8.1)	Trust: 0.8
vendor:	redhat	model:	enterprise linux workstation supplementary	scope:	eq	version:	6	Trust: 0.3
vendor:	redhat	model:	enterprise linux supplementary server	scope:	eq	version:	5	Trust: 0.3
vendor:	redhat	model:	enterprise linux server supplementary eus 6.6.z	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	enterprise linux server supplementary	scope:	eq	version:	6	Trust: 0.3
vendor:	redhat	model:	enterprise linux desktop supplementary	scope:	eq	version:	6	Trust: 0.3
vendor:	redhat	model:	enterprise linux desktop supplementary client	scope:	eq	version:	5	Trust: 0.3
vendor:	microsoft	model:	internet explorer	scope:	eq	version:	11	Trust: 0.3
vendor:	microsoft	model:	internet explorer	scope:	eq	version:	10	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	16.0235	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	14.0179	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	14.0177	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	14.0176	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	13.0259	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	13.0252	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	13.0214	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	13.0182	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	12.070	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.7.700275	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.7.700232	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.7.700169	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.6.602105	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.5.502131	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.5.502124	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.5.502118	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.5.50080	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.4.400231	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.3.300271	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.3.300270	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.3.300268	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.3.300265	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.3.300262	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.3.300257	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.3.300250	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.3.300231	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.3.300214	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.20295	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202425	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202418	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202400	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202359	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202350	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202346	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202341	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202297	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202280	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202238	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202236	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202221	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202197	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202160	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.11569	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.11554	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.11164	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.11150	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.0.198	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.0.160	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.0.1129	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.53.64	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.51.66	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.0.452	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.0.3218	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.0.22.87	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.0.15.3	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.0.12.36	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.0.12.35	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.262	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.2460	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.152.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.151.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.124.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.9.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.8.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.48.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.47.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.45.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.31.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.289.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.283.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.280	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.28.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.277.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.262.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.260.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.246.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.159.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.155.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.115.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	8.0.35.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	8.0.34.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	8	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	7.0.73.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	7.0.70.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	7.0.69.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	7.0.68.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	7.0.67.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	7.0.66.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	7.0.61.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	7.0.60.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	7.0.53.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	7.0.24.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	7.0.19.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	7.0.14.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	7	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	6.0.79	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	6.0.21.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	3	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	2	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	15.0.0.242	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	13.0.0.258	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	13.0.0.250	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	13.0.0.244	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	13.0.0.241	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	13.0.0.231	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	13.0.0.223	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	13.0.0.206	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	13.0.0.201	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	12.0.0.77	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	12.0.0.44	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	12.0.0.43	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	12.0.0.41	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	12.0.0.38	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	12	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.9.900.170	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.9.900.152	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.9.900.117	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.8.800.97	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.8.800.94	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.8.800.170	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.8.800.168	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.7.700.279	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.7.700.272	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.7.700.269	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.7.700.261	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.7.700.260	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.7.700.257	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.7.700.252	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.7.700.242	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.7.700.225	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.7.700.224	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.7.700.203	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.7.700.202	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.6.602.180	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.6.602.171	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.6.602.168	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.6.602.167	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.5.502.149	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.5.502.146	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.5.502.136	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.5.502.135	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.5.502.110	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.4.402.287	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.4.402.278	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.4.402.265	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.3.378.5	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.3.31.230	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.3.300.273	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.424	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.411	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.406	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.394	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.378	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.356	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.336	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.335	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.332	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.327	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.310	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.291	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.285	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.275	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.273	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.270	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.262	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.261	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.258	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.251	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.243	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.238	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.235	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.233	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.229	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.228	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.223	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.115.81	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.115.8	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.115.7	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.115.63	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.115.6	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.115.59	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.115.58	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.115.48	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.115.34	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.115.11	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.112.61	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.111.9	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.111.8	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.111.73	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.111.7	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.111.6	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.111.54	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.111.5	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.111.44	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.111.10	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.102.63	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.102.62	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.102.59	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.102.55	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.102.228	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.0.1.153	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.0.1.152	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.186.7	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.186.6	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.186.3	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.186.2	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.185.25	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.185.24	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.185.23	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.185.22	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.185.21	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.86	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.75	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.7	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.68	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.67	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.63	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.61	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.51	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.50	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.5	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.48	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.43	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.4	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.29	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.25	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.23	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.20	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.19	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.18	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.16	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.15	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.11	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.10	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.181.34	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.181.26	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.181.23	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.181.22	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.181.16	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.181.14	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.159.1	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.157.51	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.156.12	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.154.28	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.154.27	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.154.25	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.154.24	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.154.18	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.154.13	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.153.1	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.152.33	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.152.32	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.152.26	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.152.21	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.152	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.95.2	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.95.1	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.92.8	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.92.10	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.85.3	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.82.76	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.52.15	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.52.14.1	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.52.14	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.106.17	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.106.16	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.105.6	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.102.65	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.102.64	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.0.42.34	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.0.32.18	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.0.2.54	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	ne	version:	16.0.0.291	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	ne	version:	16.0.0.287	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	ne	version:	13.0.0.262	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	ne	version:	11.2.202.438	Trust: 0.3

sources: BID: 72261 // JVNDB: JVNDB-2015-001220 // CNNVD: CNNVD-201501-598 // NVD: CVE-2015-0310

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2015-0310
value:	HIGH
Trust: 1.0
NVD:	CVE-2015-0310
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-201501-598
value:	CRITICAL
Trust: 0.6
VULHUB:	VHN-78256
value:	HIGH
Trust: 0.1
VULMON:	CVE-2015-0310
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2015-0310
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.9
VULHUB:	VHN-78256
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-78256 // VULMON: CVE-2015-0310 // JVNDB: JVNDB-2015-001220 // CNNVD: CNNVD-201501-598 // NVD: CVE-2015-0310

PROBLEMTYPE DATA

problemtype:

CWE-264

Trust: 1.9

sources: VULHUB: VHN-78256 // JVNDB: JVNDB-2015-001220 // NVD: CVE-2015-0310

THREAT TYPE

remote

Trust: 0.7

sources: PACKETSTORM: 130262 // CNNVD: CNNVD-201501-598

TYPE

permissions and access control

Trust: 0.6

sources: CNNVD: CNNVD-201501-598

CONFIGURATIONS

sources: JVNDB: JVNDB-2015-001220

EXPLOIT AVAILABILITY

sources: VULHUB: VHN-78256

PATCH

title:	APSB15-02	url:	http://helpx.adobe.com/security/products/flash-player/apsb15-02.html	Trust: 0.8
title:	APSB15-02	url:	http://helpx.adobe.com/jp/security/products/flash-player/apsb15-02.html	Trust: 0.8
title:	Google Chrome を更新する	url:	https://support.google.com/chrome/answer/95414?hl=ja	Trust: 0.8
title:	Google Chrome	url:	https://www.google.com/intl/ja/chrome/browser/features.html	Trust: 0.8
title:	Chrome Releases	url:	http://googlechromereleases.blogspot.jp/	Trust: 0.8
title:	Update for Vulnerabilities in Adobe Flash Player in Internet Explorer (2755801)	url:	https://technet.microsoft.com/en-us/library/security/2755801	Trust: 0.8
title:	Internet Explorer 上の Adobe Flash Player の脆弱性に対応する更新プログラム (2755801)	url:	https://technet.microsoft.com/ja-jp/library/security/2755801	Trust: 0.8
title:	アドビシステムズ社 Adobe Flash Player の脆弱性に関するお知らせ	url:	http://www.fmworld.net/biz/common/adobe/20150126f.html	Trust: 0.8
title:	Red Hat: Critical: flash-plugin security update	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories&qid=RHSA-20150094 - Security Advisory	Trust: 0.1
title:	Red Hat: CVE-2015-0310	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_cve_database&qid=CVE-2015-0310	Trust: 0.1
title:	CVE-Study	url:	https://github.com/thdusdl1219/CVE-Study	Trust: 0.1
title:	welivesecurity	url:	https://www.welivesecurity.com/2015/02/06/patch-now-adobe-vulnerabilities-attack/	Trust: 0.1

sources: VULMON: CVE-2015-0310 // JVNDB: JVNDB-2015-001220

EXTERNAL IDS

db:	NVD	id:	CVE-2015-0310	Trust: 3.1
db:	BID	id:	72261	Trust: 1.5
db:	SECUNIA	id:	62660	Trust: 1.2
db:	SECUNIA	id:	62452	Trust: 1.2
db:	SECUNIA	id:	62601	Trust: 1.2
db:	SECUNIA	id:	62740	Trust: 1.2
db:	SECTRACK	id:	1031609	Trust: 1.2
db:	JVNDB	id:	JVNDB-2015-001220	Trust: 0.8
db:	CNNVD	id:	CNNVD-201501-598	Trust: 0.7
db:	PACKETSTORM	id:	130128	Trust: 0.2
db:	VULHUB	id:	VHN-78256	Trust: 0.1
db:	VULMON	id:	CVE-2015-0310	Trust: 0.1
db:	PACKETSTORM	id:	130262	Trust: 0.1

sources: VULHUB: VHN-78256 // VULMON: CVE-2015-0310 // BID: 72261 // JVNDB: JVNDB-2015-001220 // PACKETSTORM: 130262 // PACKETSTORM: 130128 // CNNVD: CNNVD-201501-598 // NVD: CVE-2015-0310

REFERENCES

url:	http://helpx.adobe.com/security/products/flash-player/apsb15-02.html	Trust: 2.2
url:	http://security.gentoo.org/glsa/glsa-201502-02.xml	Trust: 1.3
url:	http://www.securityfocus.com/bid/72261	Trust: 1.2
url:	http://www.securitytracker.com/id/1031609	Trust: 1.2
url:	http://secunia.com/advisories/62452	Trust: 1.2
url:	http://secunia.com/advisories/62601	Trust: 1.2
url:	http://secunia.com/advisories/62660	Trust: 1.2
url:	http://secunia.com/advisories/62740	Trust: 1.2
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-0310	Trust: 0.8
url:	http://www.ipa.go.jp/security/ciadr/vul/20150123-adobeflashplayer.html	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-0310	Trust: 0.8
url:	http://www.npa.go.jp/cyberpolice/topics?seq=15240	Trust: 0.8
url:	https://www.adobe.com/software/flash/about/	Trust: 0.3
url:	http://www.adobe.com	Trust: 0.3
url:	http://www.symantec.com/connect/blogs/unconfirmed-zero-day-vulnerability-discovered-adobe-flash-player	Trust: 0.3
url:	http://malware.dontneedcoffee.com/2015/01/unpatched-vulnerability-0day-in-flash.html	Trust: 0.3
url:	https://technet.microsoft.com/library/security/2755801	Trust: 0.3
url:	https://access.redhat.com/security/cve/cve-2015-0310	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2015-0310	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2015-0311	Trust: 0.2
url:	https://cwe.mitre.org/data/definitions/264.html	Trust: 0.1
url:	https://access.redhat.com/errata/rhsa-2015:0094	Trust: 0.1
url:	http://tools.cisco.com/security/center/viewalert.x?alertid=37155	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1
url:	https://www.welivesecurity.com/2015/02/06/patch-now-adobe-vulnerabilities-attack/	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-0326	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-0315	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-0319	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-0309	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0308	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0324	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-0314	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-0318	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0326	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-0307	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-0328	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0319	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0328	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-0327	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0303	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-0302	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0323	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-0304	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0307	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0330	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-0305	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0305	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-0330	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0309	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-0301	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0318	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0317	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-0324	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0321	Trust: 0.1
url:	http://creativecommons.org/licenses/by-sa/2.5	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0320	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-0306	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-0329	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0304	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0301	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0311	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0327	Trust: 0.1
url:	http://security.gentoo.org/	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-0316	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-0323	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0315	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0302	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0306	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-0308	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0325	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0314	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-0303	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0322	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-0317	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-0321	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0329	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0310	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-0322	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-0325	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-0320	Trust: 0.1
url:	https://bugs.gentoo.org.	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-0316	Trust: 0.1
url:	https://www.redhat.com/mailman/listinfo/rhsa-announce	Trust: 0.1
url:	https://helpx.adobe.com/security/products/flash-player/apsb15-03.html	Trust: 0.1
url:	https://access.redhat.com/security/team/contact/	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-0312	Trust: 0.1
url:	https://bugzilla.redhat.com/):	Trust: 0.1
url:	https://access.redhat.com/security/team/key/	Trust: 0.1
url:	https://rhn.redhat.com/errata/rhsa-2015-0094.html	Trust: 0.1
url:	https://access.redhat.com/security/updates/classification/#critical	Trust: 0.1
url:	https://access.redhat.com/articles/11258	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-0312	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-0311	Trust: 0.1

CREDITS

Yang Dingning, working with the Chromium Vulnerability Rewards Program, Timo Hirvonen of F-Secure and Kafeine

Trust: 0.3

sources: BID: 72261

SOURCES

db:	VULHUB	id:	VHN-78256
db:	VULMON	id:	CVE-2015-0310
db:	BID	id:	72261
db:	JVNDB	id:	JVNDB-2015-001220
db:	PACKETSTORM	id:	130262
db:	PACKETSTORM	id:	130128
db:	CNNVD	id:	CNNVD-201501-598
db:	NVD	id:	CVE-2015-0310

LAST UPDATE DATE

2024-11-23T21:44:40.602000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-78256	date:	2015-11-13T00:00:00
db:	VULMON	id:	CVE-2015-0310	date:	2015-11-13T00:00:00
db:	BID	id:	72261	date:	2017-10-05T16:01:00
db:	JVNDB	id:	JVNDB-2015-001220	date:	2015-01-27T00:00:00
db:	CNNVD	id:	CNNVD-201501-598	date:	2015-01-26T00:00:00
db:	NVD	id:	CVE-2015-0310	date:	2024-11-21T02:22:47.480

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-78256	date:	2015-01-23T00:00:00
db:	VULMON	id:	CVE-2015-0310	date:	2015-01-23T00:00:00
db:	BID	id:	72261	date:	2015-01-22T00:00:00
db:	JVNDB	id:	JVNDB-2015-001220	date:	2015-01-27T00:00:00
db:	PACKETSTORM	id:	130262	date:	2015-02-06T21:36:53
db:	PACKETSTORM	id:	130128	date:	2015-01-28T00:27:43
db:	CNNVD	id:	CNNVD-201501-598	date:	2015-01-26T00:00:00
db:	NVD	id:	CVE-2015-0310	date:	2015-01-23T21:59:00.050