CVE - CVE-2015-0310

CVE-ID
CVE-2015-0310	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Adobe Flash Player before 13.0.0.262 and 14.x through 16.x before 16.0.0.287 on Windows and OS X and before 11.2.202.438 on Linux does not properly restrict discovery of memory addresses, which allows attackers to bypass the ASLR protection mechanism on Windows, and have an unspecified impact on other platforms, via unknown vectors, as exploited in the wild in January 2015.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BID:72261 URL:http://www.securityfocus.com/bid/72261 CONFIRM:http://helpx.adobe.com/security/products/flash-player/apsb15-02.html GENTOO:GLSA-201502-02 URL:http://security.gentoo.org/glsa/glsa-201502-02.xml SECTRACK:1031609 URL:http://www.securitytracker.com/id/1031609 SECUNIA:62452 URL:http://secunia.com/advisories/62452 SECUNIA:62601 URL:http://secunia.com/advisories/62601 SECUNIA:62660 URL:http://secunia.com/advisories/62660 SECUNIA:62740 URL:http://secunia.com/advisories/62740
Assigning CNA
Adobe Systems Incorporated
Date Record Created
20141201	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20141201)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)