vendor:
Flash Player
by:
Google Security Research
9,8
CVSS
CRITICAL
Heap Overflow
122
CWE
Product Name: Flash Player
Affected Version From: Prior to 32.0.0.255
Affected Version To: Prior to 32.0.0.255
Patch Exists: YES
Related CWE: CVE-2019-8069
CPE: o:adobe:flash_player
Metasploit:
https://www.rapid7.com/db/vulnerabilities/centos_linux-cve-2019-8069/, https://www.rapid7.com/db/vulnerabilities/redhat_linux-cve-2019-8069/, https://www.rapid7.com/db/vulnerabilities/gentoo-linux-cve-2019-8069/, https://www.rapid7.com/db/vulnerabilities/freebsd-cve-2019-8069/, https://www.rapid7.com/db/vulnerabilities/msft-cve-2019-8069/, https://www.rapid7.com/db/vulnerabilities/freebsd-cve-2019-8070/, https://www.rapid7.com/db/vulnerabilities/flash_player-cve-2019-8069/
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: Windows, Linux, Mac
2019
Adobe Flash Player MP4 Heap Overflow
A heap overflow vulnerability exists in Adobe Flash Player when processing MP4 files. An attacker can exploit this vulnerability to execute arbitrary code in the context of the current user.
Mitigation:
Upgrade to Adobe Flash Player version 32.0.0.255 or later.
