CVE-2016-7855

Sažetak

Use-after-free vulnerability in Adobe Flash Player before 23.0.0.205 on Windows and OS X and before 11.2.202.643 on Linux allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in October 2016.

Reference

http://rhn.redhat.com/errata/RHSA-2016-2119.html
http://www.securityfocus.com/bid/93861
http://www.securitytracker.com/id/1037111
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-128
https://helpx.adobe.com/security/products/flash-player/apsb16-36.html
https://security.gentoo.org/glsa/201610-10
https://security.googleblog.com/2016/10/disclosing-vulnerabilities-to-protect.html
http://rhn.redhat.com/errata/RHSA-2016-2119.html
http://www.securityfocus.com/bid/93861
http://www.securitytracker.com/id/1037111
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-128
https://helpx.adobe.com/security/products/flash-player/apsb16-36.html
https://security.gentoo.org/glsa/201610-10
https://security.googleblog.com/2016/10/disclosing-vulnerabilities-to-protect.html

CVSS

Base:	9.3
Impact:	10.0
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

14-02-2025 - 16:11

Objavljeno

01-11-2016 - 22:59