header-logo
Suggest Exploit
vendor:
Flash Player
by:
Exploit Database
9.3
CVSS
CRITICAL
Flash ActiveX
119
CWE
Product Name: Flash Player
Affected Version From: 18.0.0.194
Affected Version To: 18.0.0.194
Patch Exists: YES
Related CWE: CVE-2015-5112
CPE: o:adobe:flash_player:18.0.0.194
Metasploit: N/A
Other Scripts: N/A
Platforms Tested: Windows, Linux, Mac
2015

CVE-2015-5112

CVE-2015-5112 is a vulnerability in Adobe Flash Player 18.0.0.194 and earlier versions. It allows an attacker to execute arbitrary code on the target system by exploiting a use-after-free vulnerability in the ActionScript 3 (AS3) virtual machine. The vulnerability is triggered when a maliciously crafted SWF file is loaded by the vulnerable Flash Player.

Mitigation:

Adobe has released a patch for this vulnerability. Users should update their Flash Player to the latest version.
Source

Exploit-DB raw data:

## CVE-2015-5112

Pop up a calculator - Requires Flash ActiveX 18.0.0.194

Download: https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/44742.swf

Navigation

Suggest Exploit

Services By CQR