What is the severity of CVE-2015-6678?

CVE-2015-6678 is rated as critical due to its potential to allow remote code execution.

How do I fix CVE-2015-6678?

To address CVE-2015-6678, update Adobe Flash Player to version 19.0.0.185 or later, or 18.0.0.241 or later for affected versions.

Which versions of Adobe Flash Player are affected by CVE-2015-6678?

CVE-2015-6678 affects versions of Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185.

Can CVE-2015-6678 be exploited on Adobe AIR?

Yes, CVE-2015-6678 also affects Adobe AIR versions before 19.0.0.190.

What platforms are impacted by CVE-2015-6678?

CVE-2015-6678 impacts Adobe Flash Player running on Windows, macOS, and Linux.

Vulnerability/
CVE-2015-6678

critical

CWE

119

22/9/2015

6/8/2024

CVE-2015-6678: Buffer Overflow

First published: Tue Sep 22 2015(Updated: )

Buffer overflow in Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK & Compiler before 19.0.0.190 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-6676.

Credit: psirt@adobe.com

Affected Software	Affected Version	How to fix
Macromedia Flash Player	<=13.0.0.289
Macromedia Flash Player	=14.0.0.125
Macromedia Flash Player	=14.0.0.145
Macromedia Flash Player	=14.0.0.176
Macromedia Flash Player	=14.0.0.179
Macromedia Flash Player	=15.0.0.152
Macromedia Flash Player	=15.0.0.167
Macromedia Flash Player	=15.0.0.189
Macromedia Flash Player	=15.0.0.223
Macromedia Flash Player	=15.0.0.239
Macromedia Flash Player	=15.0.0.246
Macromedia Flash Player	=16.0.0.235
Macromedia Flash Player	=16.0.0.257
Macromedia Flash Player	=16.0.0.287
Macromedia Flash Player	=16.0.0.296
Macromedia Flash Player	=17.0.0.134
Macromedia Flash Player	=17.0.0.169
Macromedia Flash Player	=17.0.0.188
Macromedia Flash Player	=17.0.0.190
Macromedia Flash Player	=17.0.0.191
Macromedia Flash Player	=18.0.0.160
Macromedia Flash Player	=18.0.0.194
Macromedia Flash Player	=18.0.0.203
Macromedia Flash Player	=18.0.0.209
Macromedia Flash Player	=18.0.0.232
Apple iOS and macOS
Microsoft Windows Operating System
Adobe	<=18.0.0.199
Adobe AIR	<=18.0.0.199
Adobe AIR SDK & Compiler	<=18.0.0.180
Adobe	<=18.0.0.143
Android
Macromedia Flash Player	<=11.2.202.508
Linux Kernel

Remedy

https://helpx.adobe.com/security/products/flash-player/apsb15-23.html

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2015-6678?
CVE-2015-6678 is rated as critical due to its potential to allow remote code execution.
How do I fix CVE-2015-6678?
To address CVE-2015-6678, update Adobe Flash Player to version 19.0.0.185 or later, or 18.0.0.241 or later for affected versions.
Which versions of Adobe Flash Player are affected by CVE-2015-6678?
CVE-2015-6678 affects versions of Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185.
Can CVE-2015-6678 be exploited on Adobe AIR?
Yes, CVE-2015-6678 also affects Adobe AIR versions before 19.0.0.190.
What platforms are impacted by CVE-2015-6678?
CVE-2015-6678 impacts Adobe Flash Player running on Windows, macOS, and Linux.

agent/references
agent/type
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/remedy
agent/author
agent/severity
agent/first-publish-date
agent/description
agent/event
agent/source
agent/weakness
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/adobe
canonical/macromedia flash player
version/macromedia flash player/13.0.0.289
version/macromedia flash player/14.0.0.125
version/macromedia flash player/14.0.0.145
version/macromedia flash player/14.0.0.176
version/macromedia flash player/14.0.0.179
version/macromedia flash player/15.0.0.152
version/macromedia flash player/15.0.0.167
version/macromedia flash player/15.0.0.189
version/macromedia flash player/15.0.0.223
version/macromedia flash player/15.0.0.239
version/macromedia flash player/15.0.0.246
version/macromedia flash player/16.0.0.235
version/macromedia flash player/16.0.0.257
version/macromedia flash player/16.0.0.287
version/macromedia flash player/16.0.0.296
version/macromedia flash player/17.0.0.134
version/macromedia flash player/17.0.0.169
version/macromedia flash player/17.0.0.188
version/macromedia flash player/17.0.0.190
version/macromedia flash player/17.0.0.191
version/macromedia flash player/18.0.0.160
version/macromedia flash player/18.0.0.194
version/macromedia flash player/18.0.0.203
version/macromedia flash player/18.0.0.209
version/macromedia flash player/18.0.0.232
vendor/apple
canonical/apple ios and macos
vendor/microsoft
canonical/microsoft windows operating system
canonical/adobe
version/adobe/18.0.0.199
canonical/adobe air
version/adobe air/18.0.0.199
canonical/adobe air sdk & compiler
version/adobe air sdk & compiler/18.0.0.180
version/adobe/18.0.0.143
vendor/google
canonical/android
version/macromedia flash player/11.2.202.508
vendor/linux
canonical/linux kernel