What is the severity of CVE-2015-3081?

CVE-2015-3081 has a high severity rating due to the potential for attackers to exploit the race condition in Adobe Flash Player.

How do I fix CVE-2015-3081?

To fix CVE-2015-3081, users should update Adobe Flash Player to version 17.0.0.188 or later.

Which versions of Adobe Flash Player are affected by CVE-2015-3081?

Affected versions of Adobe Flash Player include versions prior to 13.0.0.289 and 14.x through 17.x before 17.0.0.188.

Is Adobe AIR affected by CVE-2015-3081?

Yes, versions of Adobe AIR prior to 17.0.0.172 are also affected by CVE-2015-3081.

How does CVE-2015-3081 impact users?

CVE-2015-3081 allows attackers to bypass security features, potentially leading to unauthorized access and exploitation of system vulnerabilities.

Vulnerability/
CVE-2015-3081

medium

4.3

CWE

362

13/5/2015

6/8/2024

CVE-2015-3081: Race Condition

First published: Wed May 13 2015(Updated: )

Race condition in Adobe Flash Player before 13.0.0.289 and 14.x through 17.x before 17.0.0.188 on Windows and OS X and before 11.2.202.460 on Linux, Adobe AIR before 17.0.0.172, Adobe AIR SDK before 17.0.0.172, and Adobe AIR SDK & Compiler before 17.0.0.172 allows attackers to bypass the Internet Explorer Protected Mode protection mechanism via unspecified vectors.

Credit: psirt@adobe.com

Affected Software	Affected Version	How to fix
Adobe Flash Player for Internet Explorer 11	<=11.2.202.475
Linux Kernel
Adobe AIR	<=17.0.0.144
Adobe AIR SDK and Compiler	<=17.0.0.144
Adobe AIR SDK & Compiler	<=17.0.0.144
Adobe Flash Player for Internet Explorer 11	<=13.0.0.264
Adobe Flash Player for Internet Explorer 11	=14.0.0.125
Adobe Flash Player for Internet Explorer 11	=14.0.0.145
Adobe Flash Player for Internet Explorer 11	=14.0.0.176
Adobe Flash Player for Internet Explorer 11	=14.0.0.179
Adobe Flash Player for Internet Explorer 11	=15.0.0.152
Adobe Flash Player for Internet Explorer 11	=15.0.0.167
Adobe Flash Player for Internet Explorer 11	=15.0.0.189
Adobe Flash Player for Internet Explorer 11	=15.0.0.223
Adobe Flash Player for Internet Explorer 11	=15.0.0.239
Adobe Flash Player for Internet Explorer 11	=15.0.0.246
Adobe Flash Player for Internet Explorer 11	=16.0.0.235
Adobe Flash Player for Internet Explorer 11	=16.0.0.257
Adobe Flash Player for Internet Explorer 11	=16.0.0.287
Adobe Flash Player for Internet Explorer 11	=16.0.0.296
Adobe Flash Player for Internet Explorer 11	=17.0.0.134
Adobe Flash Player for Internet Explorer 11	=17.0.0.169
macOS Yosemite
Microsoft Windows

Remedy

https://helpx.adobe.com/security/products/flash-player/apsb15-09.html

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2015-3081?
CVE-2015-3081 has a high severity rating due to the potential for attackers to exploit the race condition in Adobe Flash Player.
How do I fix CVE-2015-3081?
To fix CVE-2015-3081, users should update Adobe Flash Player to version 17.0.0.188 or later.
Which versions of Adobe Flash Player are affected by CVE-2015-3081?
Affected versions of Adobe Flash Player include versions prior to 13.0.0.289 and 14.x through 17.x before 17.0.0.188.
Is Adobe AIR affected by CVE-2015-3081?
Yes, versions of Adobe AIR prior to 17.0.0.172 are also affected by CVE-2015-3081.
How does CVE-2015-3081 impact users?
CVE-2015-3081 allows attackers to bypass security features, potentially leading to unauthorized access and exploitation of system vulnerabilities.

agent/references
agent/type
collector/mitre-cve
source/MITRE
agent/severity
agent/last-modified-date
agent/remedy
agent/author
agent/event
agent/first-publish-date
agent/description
agent/source
agent/weakness
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/adobe
canonical/adobe flash player for internet explorer 11
version/adobe flash player for internet explorer 11/11.2.202.475
vendor/linux
canonical/linux kernel
canonical/adobe air
version/adobe air/17.0.0.144
canonical/adobe air sdk and compiler
version/adobe air sdk and compiler/17.0.0.144
canonical/adobe air sdk & compiler
version/adobe air sdk & compiler/17.0.0.144
version/adobe flash player for internet explorer 11/13.0.0.264
version/adobe flash player for internet explorer 11/14.0.0.125
version/adobe flash player for internet explorer 11/14.0.0.145
version/adobe flash player for internet explorer 11/14.0.0.176
version/adobe flash player for internet explorer 11/14.0.0.179
version/adobe flash player for internet explorer 11/15.0.0.152
version/adobe flash player for internet explorer 11/15.0.0.167
version/adobe flash player for internet explorer 11/15.0.0.189
version/adobe flash player for internet explorer 11/15.0.0.223
version/adobe flash player for internet explorer 11/15.0.0.239
version/adobe flash player for internet explorer 11/15.0.0.246
version/adobe flash player for internet explorer 11/16.0.0.235
version/adobe flash player for internet explorer 11/16.0.0.257
version/adobe flash player for internet explorer 11/16.0.0.287
version/adobe flash player for internet explorer 11/16.0.0.296
version/adobe flash player for internet explorer 11/17.0.0.134
version/adobe flash player for internet explorer 11/17.0.0.169
vendor/apple
canonical/macos yosemite
vendor/microsoft
canonical/microsoft windows

CVE-2015-3081: Race Condition

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2015-3081?

How do I fix CVE-2015-3081?

Which versions of Adobe Flash Player are affected by CVE-2015-3081?

Is Adobe AIR affected by CVE-2015-3081?

How does CVE-2015-3081 impact users?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2015-3081?

How do I fix CVE-2015-3081?

Which versions of Adobe Flash Player are affected by CVE-2015-3081?

Is Adobe AIR affected by CVE-2015-3081?

How does CVE-2015-3081 impact users?