Exploited
critical
9.3
CWE
190 189
Advisory Published
Updated

CVE-2015-8651: Adobe Flash Player Integer Overflow Vulnerability

First published: Mon Dec 28 2015(Updated: )

Integer overflow in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR SDK before 20.0.0.233, and Adobe AIR SDK & Compiler before 20.0.0.233 allows attackers to execute arbitrary code via unspecified vectors.

Credit: psirt@adobe.com psirt@adobe.com

Affected SoftwareAffected VersionHow to fix
Adobe AIR SDK<=20.0.0.204
Adobe Air Sdk \& Compiler<=20.0.0.204
Apple iPhone OS
Apple Mac OS X
Google Android
Microsoft Windows
Adobe Flash Player<=11.2.202.554
Linux Linux kernel
Adobe Air<=20.0.0.204
Adobe Flash Player<=18.0.0.268
Adobe Flash Player=19.0.0.185
Adobe Flash Player=19.0.0.207
Adobe Flash Player=19.0.0.226
Adobe Flash Player=19.0.0.245
Adobe Flash Player=20.0.0.228
Adobe Flash Player=20.0.0.235
All of
Any of
Adobe AIR SDK<20.0.0.233
Adobe Air Sdk \& Compiler<20.0.0.233
Any of
Apple iPhone OS
Apple Mac OS X
Google Android
Microsoft Windows
All of
Adobe Flash Player<11.2.202.559
Linux Linux kernel
All of
Adobe Air<20.0.0.233
Any of
Apple Mac OS X
Google Android
Microsoft Windows
All of
Any of
Adobe Flash Player<18.0.0.324
Adobe Flash Player>=19.0.0.185<20.0.0.267
Any of
Apple Mac OS X
Microsoft Windows
Redhat Enterprise Linux Desktop=5.0
Redhat Enterprise Linux Desktop=6.0
Redhat Enterprise Linux Server=5.0
Redhat Enterprise Linux Server=6.0
Redhat Enterprise Linux Workstation=5.0
Redhat Enterprise Linux Workstation=6.0
Opensuse Evergreen=11.4
openSUSE openSUSE=13.1
openSUSE openSUSE=13.2
SUSE Linux Enterprise Desktop=11-sp3
SUSE Linux Enterprise Desktop=11-sp4
SUSE Linux Enterprise Desktop=12
SUSE Linux Enterprise Desktop=12-sp1
Suse Linux Enterprise Workstation Extension=12
Suse Linux Enterprise Workstation Extension=12-sp1
HP Insight Control<7.6
Hp Insight Control Server Provisioning<7.6
HP Matrix Operating Environment=7.6
HP System Management Homepage<7.6
HP Systems Insight Manager<7.6
HP Version Control Repository Manager<7.6
Adobe Flash Player
All of
Any of
<20.0.0.233
<20.0.0.233
Any of
All of
<11.2.202.559
All of
<20.0.0.233
Any of
All of
Any of
<18.0.0.324
>=19.0.0.185<20.0.0.267
Any of
=5.0
=6.0
=5.0
=6.0
=5.0
=6.0
=11.4
=13.1
=13.2
=11-sp3
=11-sp4
=12
=12-sp1
=12
=12-sp1
<7.6
<7.6
=7.6
<7.6
<7.6
<7.6

Remedy

The impacted product is end-of-life and should be disconnected if still in use.

Remedy

https://helpx.adobe.com/security/products/flash-player/apsb16-01.html

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203