What is the severity of CVE-2015-3079?

CVE-2015-3079 is rated as a critical vulnerability that can lead to arbitrary code execution.

How do I fix CVE-2015-3079?

To mitigate CVE-2015-3079, users should update Adobe Flash Player to version 17.0.0.188 or later.

Which versions of Adobe Flash Player are affected by CVE-2015-3079?

CVE-2015-3079 affects Adobe Flash Player versions prior to 13.0.0.289, 14.x through 17.x before 17.0.0.188, and 11.2.202.460 on Linux.

Are Adobe AIR applications impacted by CVE-2015-3079?

Yes, CVE-2015-3079 also impacts Adobe AIR versions before 17.0.0.172.

Is it safe to use systems running macOS or Windows with vulnerable Adobe Flash Player versions?

Using systems with vulnerable Adobe Flash Player versions poses a risk to security and should be addressed by upgrading to the latest versions.

Vulnerability/
CVE-2015-3079

medium

CWE

264

13/5/2015

6/8/2024

CVE-2015-3079

First published: Wed May 13 2015(Updated: )

Adobe Flash Player before 13.0.0.289 and 14.x through 17.x before 17.0.0.188 on Windows and OS X and before 11.2.202.460 on Linux, Adobe AIR before 17.0.0.172, Adobe AIR SDK before 17.0.0.172, and Adobe AIR SDK & Compiler before 17.0.0.172 allow attackers to bypass intended access restrictions and obtain sensitive information via unspecified vectors.

Credit: psirt@adobe.com

Affected Software	Affected Version	How to fix
Adobe Flash Player for Internet Explorer 11	<=13.0.0.264
Adobe Flash Player for Internet Explorer 11	=14.0.0.125
Adobe Flash Player for Internet Explorer 11	=14.0.0.145
Adobe Flash Player for Internet Explorer 11	=14.0.0.176
Adobe Flash Player for Internet Explorer 11	=14.0.0.179
Adobe Flash Player for Internet Explorer 11	=15.0.0.152
Adobe Flash Player for Internet Explorer 11	=15.0.0.167
Adobe Flash Player for Internet Explorer 11	=15.0.0.189
Adobe Flash Player for Internet Explorer 11	=15.0.0.223
Adobe Flash Player for Internet Explorer 11	=15.0.0.239
Adobe Flash Player for Internet Explorer 11	=15.0.0.246
Adobe Flash Player for Internet Explorer 11	=16.0.0.235
Adobe Flash Player for Internet Explorer 11	=16.0.0.257
Adobe Flash Player for Internet Explorer 11	=16.0.0.287
Adobe Flash Player for Internet Explorer 11	=16.0.0.296
Adobe Flash Player for Internet Explorer 11	=17.0.0.134
Adobe Flash Player for Internet Explorer 11	=17.0.0.169
macOS Yosemite
Microsoft Windows
Adobe AIR	<=17.0.0.144
Adobe AIR SDK and Compiler	<=17.0.0.144
Adobe AIR SDK & Compiler	<=17.0.0.144
Adobe Flash Player for Internet Explorer 11	<=11.2.202.475
Linux Kernel

Remedy

https://helpx.adobe.com/security/products/flash-player/apsb15-09.html

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2015-3079?
CVE-2015-3079 is rated as a critical vulnerability that can lead to arbitrary code execution.
How do I fix CVE-2015-3079?
To mitigate CVE-2015-3079, users should update Adobe Flash Player to version 17.0.0.188 or later.
Which versions of Adobe Flash Player are affected by CVE-2015-3079?
CVE-2015-3079 affects Adobe Flash Player versions prior to 13.0.0.289, 14.x through 17.x before 17.0.0.188, and 11.2.202.460 on Linux.
Are Adobe AIR applications impacted by CVE-2015-3079?
Yes, CVE-2015-3079 also impacts Adobe AIR versions before 17.0.0.172.
Is it safe to use systems running macOS or Windows with vulnerable Adobe Flash Player versions?
Using systems with vulnerable Adobe Flash Player versions poses a risk to security and should be addressed by upgrading to the latest versions.

agent/type
agent/references
collector/mitre-cve
source/MITRE
agent/author
agent/weakness
agent/remedy
agent/last-modified-date
agent/severity
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
agent/softwarecombine
vendor/adobe
canonical/adobe flash player for internet explorer 11
version/adobe flash player for internet explorer 11/13.0.0.264
version/adobe flash player for internet explorer 11/14.0.0.125
version/adobe flash player for internet explorer 11/14.0.0.145
version/adobe flash player for internet explorer 11/14.0.0.176
version/adobe flash player for internet explorer 11/14.0.0.179
version/adobe flash player for internet explorer 11/15.0.0.152
version/adobe flash player for internet explorer 11/15.0.0.167
version/adobe flash player for internet explorer 11/15.0.0.189
version/adobe flash player for internet explorer 11/15.0.0.223
version/adobe flash player for internet explorer 11/15.0.0.239
version/adobe flash player for internet explorer 11/15.0.0.246
version/adobe flash player for internet explorer 11/16.0.0.235
version/adobe flash player for internet explorer 11/16.0.0.257
version/adobe flash player for internet explorer 11/16.0.0.287
version/adobe flash player for internet explorer 11/16.0.0.296
version/adobe flash player for internet explorer 11/17.0.0.134
version/adobe flash player for internet explorer 11/17.0.0.169
vendor/apple
canonical/macos yosemite
vendor/microsoft
canonical/microsoft windows
canonical/adobe air
version/adobe air/17.0.0.144
canonical/adobe air sdk and compiler
version/adobe air sdk and compiler/17.0.0.144
canonical/adobe air sdk & compiler
version/adobe air sdk & compiler/17.0.0.144
version/adobe flash player for internet explorer 11/11.2.202.475
vendor/linux
canonical/linux kernel

CVE-2015-3079

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2015-3079?

How do I fix CVE-2015-3079?

Which versions of Adobe Flash Player are affected by CVE-2015-3079?

Are Adobe AIR applications impacted by CVE-2015-3079?

Is it safe to use systems running macOS or Windows with vulnerable Adobe Flash Player versions?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2015-3079?

How do I fix CVE-2015-3079?

Which versions of Adobe Flash Player are affected by CVE-2015-3079?

Are Adobe AIR applications impacted by CVE-2015-3079?

Is it safe to use systems running macOS or Windows with vulnerable Adobe Flash Player versions?