Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the PSDK's MediaPlayer class. Successful exploitation could lead to arbitrary code execution.
References
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
History
21 Nov 2024, 02:58
Type | Values Removed | Values Added |
---|---|---|
References | () http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00064.html - Broken Link | |
References | () http://lists.opensuse.org/opensuse-updates/2016-12/msg00112.html - Broken Link | |
References | () http://rhn.redhat.com/errata/RHSA-2016-2947.html - Third Party Advisory | |
References | () http://www.securityfocus.com/bid/94873 - Third Party Advisory, VDB Entry | |
References | () http://www.securitytracker.com/id/1037442 - Broken Link, Third Party Advisory, VDB Entry | |
References | () http://www.zerodayinitiative.com/advisories/ZDI-16-620 - Third Party Advisory, VDB Entry | |
References | () https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-154 - Patch, Third Party Advisory | |
References | () https://helpx.adobe.com/security/products/flash-player/apsb16-39.html - Patch, Vendor Advisory | |
References | () https://security.gentoo.org/glsa/201701-17 - Third Party Advisory |
Information
Published : 2016-12-15 06:59
Updated : 2024-11-21 02:58
NVD link : CVE-2016-7878
Mitre link : CVE-2016-7878
CVE.ORG link : CVE-2016-7878
JSON object : View
Products Affected
apple
- mac_os_x
microsoft
- windows_8.1
- windows
- windows_10
linux
- linux_kernel
adobe
- flash_player_desktop_runtime
- flash_player
- chrome_os
CWE
CWE-416
Use After Free