Details of VAR-201507-0099

ID

VAR-201507-0099

CVE

CVE-2015-5116

TITLE

Adobe Flash Player and Adobe AIR Vulnerabilities that bypass the same origin policy

Trust: 0.8

sources: JVNDB: JVNDB-2015-003526

DESCRIPTION

Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before 18.0.0.203 on Windows and OS X and before 11.2.202.481 on Linux, Adobe AIR before 18.0.0.180, Adobe AIR SDK before 18.0.0.180, and Adobe AIR SDK & Compiler before 18.0.0.180 allow remote attackers to bypass the Same Origin Policy via unspecified vectors, a different vulnerability than CVE-2014-0578, CVE-2015-3115, CVE-2015-3116, and CVE-2015-3125. This vulnerability CVE-2014-0578 , CVE-2015-3115 , CVE-2015-3116 ,and CVE-2015-3125 Is a different vulnerability. Supplementary information : CWE Vulnerability type by CWE-284: Improper Access Control ( Inappropriate access control ) Has been identified. http://cwe.mitre.org/data/definitions/284.htmlA third party can bypass the same origin policy. Attackers can exploit these issues to view content from a browser window in another domain or security zone. This may allow the attacker to obtain sensitive information or aid in further attacks. Security flaws exist in several Adobe products. Background ========== The Adobe Flash Player is a renderer for the SWF file format, which is commonly used to provide interactive websites. Please review the CVE identifiers referenced below for details. Impact ====== A remote attacker could possibly execute arbitrary code with the privileges of the process, cause a Denial of Service condition, obtain sensitive information, or bypass security restrictions. Workaround ========== There is no known workaround at this time. Resolution ========== All Adobe Flash Player users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot -v ">=www-plugins/adobe-flash-11.2.202.481" References ========== [ 1 ] CVE-2014-0578 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2014-0578 [ 2 ] CVE-2015-3113 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3113 [ 3 ] CVE-2015-3114 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3114 [ 4 ] CVE-2015-3115 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3115 [ 5 ] CVE-2015-3116 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3116 [ 6 ] CVE-2015-3117 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3117 [ 7 ] CVE-2015-3118 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3118 [ 8 ] CVE-2015-3119 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3119 [ 9 ] CVE-2015-3120 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3120 [ 10 ] CVE-2015-3121 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3121 [ 11 ] CVE-2015-3122 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3122 [ 12 ] CVE-2015-3123 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3123 [ 13 ] CVE-2015-3124 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3124 [ 14 ] CVE-2015-3125 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3125 [ 15 ] CVE-2015-3126 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3126 [ 16 ] CVE-2015-3127 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3127 [ 17 ] CVE-2015-3128 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3128 [ 18 ] CVE-2015-3129 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3129 [ 19 ] CVE-2015-3130 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3130 [ 20 ] CVE-2015-3131 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3131 [ 21 ] CVE-2015-3132 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3132 [ 22 ] CVE-2015-3133 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3133 [ 23 ] CVE-2015-3134 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3134 [ 24 ] CVE-2015-3135 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3135 [ 25 ] CVE-2015-3136 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3136 [ 26 ] CVE-2015-3137 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3137 [ 27 ] CVE-2015-4428 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-4428 [ 28 ] CVE-2015-4429 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-4429 [ 29 ] CVE-2015-4430 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-4430 [ 30 ] CVE-2015-4431 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-4431 [ 31 ] CVE-2015-4432 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-4432 [ 32 ] CVE-2015-4433 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-4433 [ 33 ] CVE-2015-5116 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-5116 [ 34 ] CVE-2015-5117 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-5117 [ 35 ] CVE-2015-5118 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-5118 [ 36 ] CVE-2015-5119 http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-5119 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/201507-13 Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org. License ======= Copyright 2015 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5 . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ===================================================================== Red Hat Security Advisory Synopsis: Critical: flash-plugin security update Advisory ID: RHSA-2015:1214-01 Product: Red Hat Enterprise Linux Supplementary Advisory URL: https://rhn.redhat.com/errata/RHSA-2015-1214.html Issue date: 2015-07-08 CVE Names: CVE-2014-0578 CVE-2015-3114 CVE-2015-3115 CVE-2015-3116 CVE-2015-3117 CVE-2015-3118 CVE-2015-3119 CVE-2015-3120 CVE-2015-3121 CVE-2015-3122 CVE-2015-3123 CVE-2015-3124 CVE-2015-3125 CVE-2015-3126 CVE-2015-3127 CVE-2015-3128 CVE-2015-3129 CVE-2015-3130 CVE-2015-3131 CVE-2015-3132 CVE-2015-3133 CVE-2015-3134 CVE-2015-3135 CVE-2015-3136 CVE-2015-3137 CVE-2015-4428 CVE-2015-4429 CVE-2015-4430 CVE-2015-4431 CVE-2015-4432 CVE-2015-4433 CVE-2015-5116 CVE-2015-5117 CVE-2015-5118 CVE-2015-5119 ===================================================================== 1. Summary: An updated Adobe Flash Player package that fixes multiple security issues is now available for Red Hat Enterprise Linux 5 and 6 Supplementary. Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Desktop Supplementary (v. 5) - i386, x86_64 Red Hat Enterprise Linux Desktop Supplementary (v. 6) - i386, x86_64 Red Hat Enterprise Linux Server Supplementary (v. 5) - i386, x86_64 Red Hat Enterprise Linux Server Supplementary (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Supplementary (v. 6) - i386, x86_64 3. These vulnerabilities are detailed in the Adobe Security Bulletin APSB15-16 listed in the References section. Multiple flaws were found in the way flash-plugin displayed certain SWF content. An attacker could use these flaws to create a specially crafted SWF file that would cause flash-plugin to crash or, potentially, execute arbitrary code when the victim loaded a page containing the malicious SWF content. (CVE-2015-3117, CVE-2015-3118, CVE-2015-3119, CVE-2015-3120, CVE-2015-3121, CVE-2015-3122, CVE-2015-3123, CVE-2015-3124, CVE-2015-3126, CVE-2015-3127, CVE-2015-3128, CVE-2015-3129, CVE-2015-3130, CVE-2015-3131, CVE-2015-3132, CVE-2015-3133, CVE-2015-3134, CVE-2015-3135, CVE-2015-3136, CVE-2015-3137, CVE-2015-4428, CVE-2015-4429, CVE-2015-4430, CVE-2015-4431, CVE-2015-4432, CVE-2015-4433, CVE-2015-5117, CVE-2015-5118, CVE-2015-5119) Multiple security bypass flaws were found in flash-plugin that could lead to the disclosure of sensitive information. (CVE-2014-0578, CVE-2015-3114, CVE-2015-3115, CVE-2015-3116, CVE-2015-3125, CVE-2015-5116) All users of Adobe Flash Player should install this updated package, which upgrades Flash Player to version 11.2.202.481. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1240832 - CVE-2015-5119 flash-plugin: code execution issue in APSA15-03 / APSB15-16 1241171 - flash-plugin: multiple code execution issues fixed in APSB15-16 1241173 - flash-plugin: information disclosure issues fixed in APSB15-16 6. Package List: Red Hat Enterprise Linux Desktop Supplementary (v. 5): i386: flash-plugin-11.2.202.481-1.el5.i386.rpm x86_64: flash-plugin-11.2.202.481-1.el5.i386.rpm Red Hat Enterprise Linux Server Supplementary (v. 5): i386: flash-plugin-11.2.202.481-1.el5.i386.rpm x86_64: flash-plugin-11.2.202.481-1.el5.i386.rpm Red Hat Enterprise Linux Desktop Supplementary (v. 6): i386: flash-plugin-11.2.202.481-1.el6_6.i686.rpm x86_64: flash-plugin-11.2.202.481-1.el6_6.i686.rpm Red Hat Enterprise Linux Server Supplementary (v. 6): i386: flash-plugin-11.2.202.481-1.el6_6.i686.rpm x86_64: flash-plugin-11.2.202.481-1.el6_6.i686.rpm Red Hat Enterprise Linux Workstation Supplementary (v. 6): i386: flash-plugin-11.2.202.481-1.el6_6.i686.rpm x86_64: flash-plugin-11.2.202.481-1.el6_6.i686.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2014-0578 https://access.redhat.com/security/cve/CVE-2015-3114 https://access.redhat.com/security/cve/CVE-2015-3115 https://access.redhat.com/security/cve/CVE-2015-3116 https://access.redhat.com/security/cve/CVE-2015-3117 https://access.redhat.com/security/cve/CVE-2015-3118 https://access.redhat.com/security/cve/CVE-2015-3119 https://access.redhat.com/security/cve/CVE-2015-3120 https://access.redhat.com/security/cve/CVE-2015-3121 https://access.redhat.com/security/cve/CVE-2015-3122 https://access.redhat.com/security/cve/CVE-2015-3123 https://access.redhat.com/security/cve/CVE-2015-3124 https://access.redhat.com/security/cve/CVE-2015-3125 https://access.redhat.com/security/cve/CVE-2015-3126 https://access.redhat.com/security/cve/CVE-2015-3127 https://access.redhat.com/security/cve/CVE-2015-3128 https://access.redhat.com/security/cve/CVE-2015-3129 https://access.redhat.com/security/cve/CVE-2015-3130 https://access.redhat.com/security/cve/CVE-2015-3131 https://access.redhat.com/security/cve/CVE-2015-3132 https://access.redhat.com/security/cve/CVE-2015-3133 https://access.redhat.com/security/cve/CVE-2015-3134 https://access.redhat.com/security/cve/CVE-2015-3135 https://access.redhat.com/security/cve/CVE-2015-3136 https://access.redhat.com/security/cve/CVE-2015-3137 https://access.redhat.com/security/cve/CVE-2015-4428 https://access.redhat.com/security/cve/CVE-2015-4429 https://access.redhat.com/security/cve/CVE-2015-4430 https://access.redhat.com/security/cve/CVE-2015-4431 https://access.redhat.com/security/cve/CVE-2015-4432 https://access.redhat.com/security/cve/CVE-2015-4433 https://access.redhat.com/security/cve/CVE-2015-5116 https://access.redhat.com/security/cve/CVE-2015-5117 https://access.redhat.com/security/cve/CVE-2015-5118 https://access.redhat.com/security/cve/CVE-2015-5119 https://access.redhat.com/security/updates/classification/#critical https://helpx.adobe.com/security/products/flash-player/apsb15-16.html https://helpx.adobe.com/security/products/flash-player/apsa15-03.html 8. Contact: The Red Hat security contact is <secalert@redhat.com>. More contact details at https://access.redhat.com/security/team/contact/ Copyright 2015 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iD8DBQFVnYzEXlSAg2UNWIIRAiYOAJ4hyudjAqMbqOcLAA47WlvgoVG25gCdF1BZ bxdi7YGr3vmk1ppaEImDJNg= =KEcy -----END PGP SIGNATURE----- -- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce

Trust: 2.25

sources: NVD: CVE-2015-5116 // JVNDB: JVNDB-2015-003526 // BID: 75594 // VULHUB: VHN-83077 // VULMON: CVE-2015-5116 // PACKETSTORM: 132640 // PACKETSTORM: 132611

AFFECTED PRODUCTS

vendor:	adobe	model:	flash player	scope:	eq	version:	17.0.0.188	Trust: 1.6
vendor:	adobe	model:	flash player	scope:	eq	version:	18.0.0.194	Trust: 1.6
vendor:	adobe	model:	flash player	scope:	eq	version:	17.0.0.190	Trust: 1.6
vendor:	adobe	model:	flash player	scope:	eq	version:	17.0.0.134	Trust: 1.6
vendor:	adobe	model:	flash player	scope:	eq	version:	18.0.0.160	Trust: 1.6
vendor:	adobe	model:	flash player	scope:	eq	version:	17.0.0.169	Trust: 1.6
vendor:	adobe	model:	flash player	scope:	eq	version:	16.0.0.287	Trust: 1.0
vendor:	adobe	model:	flash player	scope:	eq	version:	14.0.0.176	Trust: 1.0
vendor:	adobe	model:	flash player	scope:	eq	version:	16.0.0.296	Trust: 1.0
vendor:	adobe	model:	air sdk	scope:	lte	version:	18.0.0.144	Trust: 1.0
vendor:	adobe	model:	flash player	scope:	eq	version:	15.0.0.246	Trust: 1.0
vendor:	adobe	model:	flash player	scope:	eq	version:	15.0.0.189	Trust: 1.0
vendor:	adobe	model:	flash player	scope:	eq	version:	15.0.0.239	Trust: 1.0
vendor:	adobe	model:	flash player	scope:	eq	version:	15.0.0.223	Trust: 1.0
vendor:	adobe	model:	flash player	scope:	lte	version:	13.0.0.289	Trust: 1.0
vendor:	adobe	model:	flash player	scope:	eq	version:	14.0.0.125	Trust: 1.0
vendor:	adobe	model:	air sdk \& compiler	scope:	lte	version:	18.0.0.144	Trust: 1.0
vendor:	adobe	model:	flash player	scope:	eq	version:	15.0.0.152	Trust: 1.0
vendor:	adobe	model:	flash player	scope:	eq	version:	16.0.0.257	Trust: 1.0
vendor:	adobe	model:	air	scope:	lte	version:	18.0.0.144	Trust: 1.0
vendor:	adobe	model:	flash player	scope:	eq	version:	14.0.0.145	Trust: 1.0
vendor:	adobe	model:	flash player	scope:	eq	version:	16.0.0.235	Trust: 1.0
vendor:	adobe	model:	flash player	scope:	lte	version:	11.2.202.468	Trust: 1.0
vendor:	adobe	model:	flash player	scope:	eq	version:	14.0.0.179	Trust: 1.0
vendor:	adobe	model:	flash player	scope:	eq	version:	15.0.0.167	Trust: 1.0
vendor:	google	model:	chrome	scope:	-	version:	-	Trust: 0.8
vendor:	adobe	model:	air	scope:	lt	version:	desktop runtime 18.0.0.180 (windows/macintosh)	Trust: 0.8
vendor:	adobe	model:	air sdk	scope:	lt	version:	18.0.0.180 (windows/macintosh/android/ios)	Trust: 0.8
vendor:	adobe	model:	air sdk & compiler	scope:	lt	version:	18.0.0.180 (windows/macintosh/android/ios)	Trust: 0.8
vendor:	adobe	model:	flash player	scope:	lt	version:	11.2.202.481 (linux)	Trust: 0.8
vendor:	adobe	model:	flash player	scope:	lt	version:	18.0.0.203 (internet explorer 10/11)	Trust: 0.8
vendor:	adobe	model:	flash player	scope:	lt	version:	18.0.0.203 (windows/macintosh edition chrome)	Trust: 0.8
vendor:	adobe	model:	flash player	scope:	lt	version:	18.0.0.204 (linux edition chrome)	Trust: 0.8
vendor:	adobe	model:	flash player	scope:	lt	version:	desktop runtime 18.0.0.203 (windows/macintosh)	Trust: 0.8
vendor:	adobe	model:	flash player	scope:	lt	version:	continuous support release 13.0.0.302 (windows/macintosh)	Trust: 0.8
vendor:	microsoft	model:	internet explorer	scope:	eq	version:	10 (windows 8/windows server 2012/windows rt)	Trust: 0.8
vendor:	microsoft	model:	internet explorer	scope:	eq	version:	11 (windows 8.1/windows server 2012 r2/windows rt 8.1)	Trust: 0.8
vendor:	adobe	model:	air sdk \& compiler	scope:	eq	version:	18.0.0.144	Trust: 0.6
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.468	Trust: 0.6
vendor:	adobe	model:	air sdk	scope:	eq	version:	18.0.0.144	Trust: 0.6
vendor:	adobe	model:	air	scope:	eq	version:	18.0.0.144	Trust: 0.6
vendor:	red	model:	hat enterprise linux workstation supplementary	scope:	eq	version:	6	Trust: 0.3
vendor:	red	model:	hat enterprise linux server supplementary	scope:	eq	version:	6	Trust: 0.3
vendor:	red	model:	hat enterprise linux desktop supplementary	scope:	eq	version:	6	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.53.64	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.51.66	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.0.452	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.0.3218	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.0.22.87	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.0.15.3	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.0.12.36	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.0.12.35	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.262	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.2460	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.152.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.151.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.124.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.48.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.47.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.45.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.31.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.289.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.283.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.280	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.28.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.277.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.262.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.260.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.246.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.159.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.155.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9.0.115.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	9	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	8.0.35.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	8.0.34.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	8	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	7.0.73.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	7.0.70.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	7.0.69.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	7.0.68.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	7.0.67.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	7.0.66.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	7.0.61.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	7.0.60.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	7.0.53.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	7.0.24.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	7.0.19.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	7.0.14.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	7	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	6.0.79	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	6.0.21.0	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.235	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.233	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.229	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.228	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.2.202.223	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.115.8	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.115.7	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.115.6	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.112.61	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.111.9	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.111.8	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.111.7	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.111.6	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.111.5	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.102.63	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.102.62	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.102.55	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.1.102.228	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	11.0.1.152	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.186.7	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.186.6	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.186.3	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.186.2	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.185.25	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.185.23	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.185.22	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.185.21	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.7	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.5	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.4	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.183.10	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.181.34	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.181.26	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.181.23	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.181.22	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.181.16	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.3.181.14	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.159.1	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.157.51	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.156.12	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.154.28	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.154.27	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.154.25	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.154.24	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.154.18	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.154.13	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.153.1	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.152.33	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.152.32	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.152.21	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.2.152	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.95.2	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.95.1	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.92.8	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.92.10	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.85.3	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.82.76	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.52.15	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.52.14.1	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.106.16	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.105.6	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.102.65	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.1.102.64	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.0.42.34	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10.0.32.18	Trust: 0.3
vendor:	adobe	model:	flash player	scope:	eq	version:	10	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	2.0.4	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	2.0.3	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	1.5.3.9130	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	1.5.3.9120	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	1.5.3	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	1.5.2	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	1.5.1	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	3.2.0.2080	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	3.2.0.2070	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	3.1.0.4880	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	3.0	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	2.7.1.1961	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	2.7.1	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	2.7	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	2.6.19140	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	2.6.19120	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	2.6	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	2.5.1	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	2.0.2.12610	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	2.0.2	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	1.5	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	1.1	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	1.01	Trust: 0.3
vendor:	adobe	model:	air	scope:	eq	version:	1.0	Trust: 0.3

sources: BID: 75594 // JVNDB: JVNDB-2015-003526 // CNNVD: CNNVD-201507-295 // NVD: CVE-2015-5116

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2015-5116
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2015-5116
value:	MEDIUM
Trust: 0.8
CNNVD:	CNNVD-201507-295
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-83077
value:	MEDIUM
Trust: 0.1
VULMON:	CVE-2015-5116
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2015-5116
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.9
VULHUB:	VHN-83077
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-83077 // VULMON: CVE-2015-5116 // JVNDB: JVNDB-2015-003526 // CNNVD: CNNVD-201507-295 // NVD: CVE-2015-5116

PROBLEMTYPE DATA

problemtype:	CWE-284	Trust: 1.1
problemtype:	CWE-Other	Trust: 0.8

sources: VULHUB: VHN-83077 // JVNDB: JVNDB-2015-003526 // NVD: CVE-2015-5116

THREAT TYPE

remote

Trust: 0.7

sources: PACKETSTORM: 132640 // CNNVD: CNNVD-201507-295

TYPE

Unknown

Trust: 0.3

sources: BID: 75594

CONFIGURATIONS

sources: JVNDB: JVNDB-2015-003526

EXPLOIT AVAILABILITY

sources: VULHUB: VHN-83077 // VULMON: CVE-2015-5116

PATCH

title:	APSB15-16	url:	http://helpx.adobe.com/security/products/flash-player/apsb15-16.html	Trust: 0.8
title:	APSB15-16	url:	http://helpx.adobe.com/jp/security/products/flash-player/apsb15-16.html	Trust: 0.8
title:	Google Chrome を更新する	url:	https://support.google.com/chrome/answer/95414?hl=ja	Trust: 0.8
title:	Google Chrome	url:	https://www.google.com/intl/ja/chrome/browser/features.html	Trust: 0.8
title:	Chrome Releases	url:	http://googlechromereleases.blogspot.jp/	Trust: 0.8
title:	Update for Vulnerabilities in Adobe Flash Player in Internet Explorer (2755801)	url:	https://technet.microsoft.com/en-us/library/security/2755801	Trust: 0.8
title:	Internet Explorer 上の Adobe Flash Player の脆弱性に対応する更新プログラム (2755801)	url:	https://technet.microsoft.com/ja-jp/library/security/2755801	Trust: 0.8
title:	アドビシステムズ社 Adobe Flash Player の脆弱性に関するお知らせ	url:	http://www.fmworld.net/biz/common/adobe/20150710f.html	Trust: 0.8
title:	Red Hat: CVE-2015-5116	url:	https://vulmon.com/vendoradvisory?qidtp=red_hat_cve_database&qid=CVE-2015-5116	Trust: 0.1
title:	CVE-Study	url:	https://github.com/thdusdl1219/CVE-Study	Trust: 0.1

sources: VULMON: CVE-2015-5116 // JVNDB: JVNDB-2015-003526

EXTERNAL IDS

db:	NVD	id:	CVE-2015-5116	Trust: 3.1
db:	BID	id:	75594	Trust: 1.5
db:	EXPLOIT-DB	id:	37851	Trust: 1.2
db:	SECTRACK	id:	1032810	Trust: 1.2
db:	JVNDB	id:	JVNDB-2015-003526	Trust: 0.8
db:	CNNVD	id:	CNNVD-201507-295	Trust: 0.6
db:	PACKETSTORM	id:	133178	Trust: 0.1
db:	VULHUB	id:	VHN-83077	Trust: 0.1
db:	VULMON	id:	CVE-2015-5116	Trust: 0.1
db:	PACKETSTORM	id:	132640	Trust: 0.1
db:	PACKETSTORM	id:	132611	Trust: 0.1

sources: VULHUB: VHN-83077 // VULMON: CVE-2015-5116 // BID: 75594 // JVNDB: JVNDB-2015-003526 // PACKETSTORM: 132640 // PACKETSTORM: 132611 // CNNVD: CNNVD-201507-295 // NVD: CVE-2015-5116

REFERENCES

url:	https://helpx.adobe.com/security/products/flash-player/apsb15-16.html	Trust: 1.9
url:	https://www.exploit-db.com/exploits/37851/	Trust: 1.3
url:	https://security.gentoo.org/glsa/201507-13	Trust: 1.3
url:	http://rhn.redhat.com/errata/rhsa-2015-1214.html	Trust: 1.3
url:	http://www.securityfocus.com/bid/75594	Trust: 1.2
url:	http://www.securitytracker.com/id/1032810	Trust: 1.2
url:	http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00017.html	Trust: 1.2
url:	http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00018.html	Trust: 1.2
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-5116	Trust: 0.8
url:	http://www.ipa.go.jp/security/ciadr/vul/20150709-adobeflashplayer.html	Trust: 0.8
url:	http://www.jpcert.or.jp/at/2015/at150019.html	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-5116	Trust: 0.8
url:	http://www.npa.go.jp/cyberpolice/topics?seq=16572	Trust: 0.8
url:	http://www.adobe.com/products/air/	Trust: 0.3
url:	http://www.adobe.com	Trust: 0.3
url:	https://access.redhat.com/security/cve/cve-2015-5116	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3116	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3120	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3121	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3117	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3134	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3136	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3126	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3132	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3127	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3118	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3123	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3125	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3128	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3135	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3119	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2014-0578	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3131	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3114	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3130	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3122	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3137	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2015-4428	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2015-4429	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3115	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3124	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3133	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3129	Trust: 0.2
url:	https://cwe.mitre.org/data/definitions/284.html	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3123	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3114	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3131	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-5119	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3128	Trust: 0.1
url:	https://security.gentoo.org/	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3113	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3127	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-5118	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3129	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3134	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3133	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3125	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3122	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3115	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3130	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-4432	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3117	Trust: 0.1
url:	http://creativecommons.org/licenses/by-sa/2.5	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3120	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3126	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3136	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-4429	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-5117	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3135	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3137	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-4430	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3119	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-3113	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-5116	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2014-0578	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3132	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3124	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-4428	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3121	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3116	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-4431	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-4433	Trust: 0.1
url:	https://bugs.gentoo.org.	Trust: 0.1
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2015-3118	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-3114	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-3135	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-4428	Trust: 0.1
url:	https://access.redhat.com/security/updates/classification/#critical	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-3115	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-3130	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-3117	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-3116	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-3119	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-3128	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-3132	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2014-0578	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-4432	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-3124	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-3137	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-3123	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2015-4430	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-4430	Trust: 0.1
url:	https://access.redhat.com/articles/11258	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-3133	Trust: 0.1
url:	https://access.redhat.com/security/team/contact/	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-3122	Trust: 0.1
url:	https://www.redhat.com/mailman/listinfo/rhsa-announce	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-3118	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-4433	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-4429	Trust: 0.1
url:	https://bugzilla.redhat.com/):	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-3129	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-3131	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-5117	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-3125	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-3127	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-4431	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-3136	Trust: 0.1
url:	https://helpx.adobe.com/security/products/flash-player/apsa15-03.html	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-3120	Trust: 0.1
url:	https://access.redhat.com/security/team/key/	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-3121	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-3134	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-5119	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-3126	Trust: 0.1
url:	https://access.redhat.com/security/cve/cve-2015-5118	Trust: 0.1

CREDITS

Soroush Dalili from NCC Group, Malte Batram, David Kraftsow (dontsave) working with HP's Zero Day Initiative, and Zreczny Gamon

Trust: 0.3

sources: BID: 75594

SOURCES

db:	VULHUB	id:	VHN-83077
db:	VULMON	id:	CVE-2015-5116
db:	BID	id:	75594
db:	JVNDB	id:	JVNDB-2015-003526
db:	PACKETSTORM	id:	132640
db:	PACKETSTORM	id:	132611
db:	CNNVD	id:	CNNVD-201507-295
db:	NVD	id:	CVE-2015-5116

LAST UPDATE DATE

2024-11-23T21:06:50.078000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-83077	date:	2017-09-22T00:00:00
db:	VULMON	id:	CVE-2015-5116	date:	2017-09-22T00:00:00
db:	BID	id:	75594	date:	2015-07-14T23:59:00
db:	JVNDB	id:	JVNDB-2015-003526	date:	2015-07-13T00:00:00
db:	CNNVD	id:	CNNVD-201507-295	date:	2015-07-10T00:00:00
db:	NVD	id:	CVE-2015-5116	date:	2024-11-21T02:32:23.553

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-83077	date:	2015-07-09T00:00:00
db:	VULMON	id:	CVE-2015-5116	date:	2015-07-09T00:00:00
db:	BID	id:	75594	date:	2015-07-08T00:00:00
db:	JVNDB	id:	JVNDB-2015-003526	date:	2015-07-13T00:00:00
db:	PACKETSTORM	id:	132640	date:	2015-07-10T15:43:35
db:	PACKETSTORM	id:	132611	date:	2015-07-08T23:45:17
db:	CNNVD	id:	CNNVD-201507-295	date:	2015-07-10T00:00:00
db:	NVD	id:	CVE-2015-5116	date:	2015-07-09T16:59:28.917