CVE-2015-8644

Related Files

Adobe Flash SimpleButton Creation Type Creation

Posted Feb 23, 2016

Authored by Google Security Research, natashenka

There is a type confusion vulnerability in the SimpleButton constructor. Flash stores an empty button to use to create buttons for optimization reasons. If this object is created using a SWF tag before it is created in the Button class, and it not of type Button, type confusion can occur.

tags | exploit

systems | linux

advisories | CVE-2015-8644

SHA-256 | 7599e6513ebba54c924cb1897955fa83dea113a866068a2d1b4b039d4ac55dc5

Download | Favorite | View

Red Hat Security Advisory 2015-2697-01

Posted Dec 29, 2015

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2015-2697-01 - The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. This update fixes multiple vulnerabilities in Adobe Flash Player. These vulnerabilities could allow an attacker to create a specially crafted SWF file that would cause flash-plugin to crash, execute arbitrary code, or disclose sensitive information when the victim loaded a page containing the malicious SWF content.

tags | advisory, web, arbitrary, vulnerability

systems | linux, redhat

advisories | CVE-2015-8459, CVE-2015-8460, CVE-2015-8634, CVE-2015-8635, CVE-2015-8636, CVE-2015-8638, CVE-2015-8639, CVE-2015-8640, CVE-2015-8641, CVE-2015-8642, CVE-2015-8643, CVE-2015-8644, CVE-2015-8645, CVE-2015-8646, CVE-2015-8647, CVE-2015-8648, CVE-2015-8649, CVE-2015-8650, CVE-2015-8651

SHA-256 | cf66ca97718395e208f26158dd4948c5061faf78290b77509496697890751210

Download | Favorite | View