header-logo
Suggest Exploit
vendor:
Flash Player
by:
Project Zero
9,8
CVSS
CRITICAL
Out-of-Bounds Read
125
CWE
Product Name: Flash Player
Affected Version From: Adobe Flash Player 32.0.0.255
Affected Version To: Adobe Flash Player 32.0.0.270
Patch Exists: YES
Related CWE: CVE-2019-8069
CPE: o:adobe:flash_player:32.0.0.255
Metasploit: https://www.rapid7.com/db/vulnerabilities/centos_linux-cve-2019-8069/https://www.rapid7.com/db/vulnerabilities/redhat_linux-cve-2019-8069/https://www.rapid7.com/db/vulnerabilities/gentoo-linux-cve-2019-8069/https://www.rapid7.com/db/vulnerabilities/freebsd-cve-2019-8069/https://www.rapid7.com/db/vulnerabilities/msft-cve-2019-8069/https://www.rapid7.com/db/vulnerabilities/freebsd-cve-2019-8070/https://www.rapid7.com/db/vulnerabilities/flash_player-cve-2019-8069/
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows, Linux, Mac
2019

The attached swf causes an out-of-bounds read in getting the width of a TextField

A vulnerability in Adobe Flash Player allows an attacker to read data from memory locations outside of the intended bounds of a TextField object. This can be exploited to leak sensitive information from the memory of the application.

Mitigation:

Upgrade to the latest version of Adobe Flash Player.
Source

Exploit-DB raw data:

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1211

The attached swf causes an out-of-bounds read in getting the width of a TextField.


Proof of Concept:
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/42019.zip

Navigation

Suggest Exploit

Services By CQR