CVE-2015-5123

14.07.2015, 10:59

Use-after-free vulnerability in the BitmapData class in the ActionScript 3 (AS3) implementation in Adobe Flash Player 13.x through 13.0.0.302 on Windows and OS X, 14.x through 18.0.0.203 on Windows and OS X, 11.x through 11.2.202.481 on Linux, and 12.x through 18.0.0.204 on Linux Chrome installations allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted Flash content that overrides a valueOf function, as exploited in the wild in July 2015.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	9.8 CRITICAL	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
adobe	CNA	---				---
CVE	ADP	---				---
CISA-ADP	ADP	9.8 CRITICAL	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 97%

Vendor	Product	Version
redhat	enterprise_linux_desktop	5.0
redhat	enterprise_linux_desktop	6.0
redhat	enterprise_linux_server	5.0
redhat	enterprise_linux_server	6.0
redhat	enterprise_linux_server_eus	6.6
redhat	enterprise_linux_workstation	5.0
redhat	enterprise_linux_workstation	6.0
opensuse	evergreen	11.4
adobe	flash_player	11.0 ≤ 𝑥 ≤ 11.2.202.481
adobe	flash_player	13.0 ≤ 𝑥 ≤ 13.0.0.302
adobe	flash_player	18.0 ≤ 𝑥 ≤ 18.0.0.203
adobe	flash_player_desktop_runtime	18.0 ≤ 𝑥 ≤ 18.0.0.203

𝑥

= Vulnerable software versions

Ubuntu Releases

Ubuntu Product

Codename

adobe-flashplugin

vivid	Fixed 1:20150714.1-0vivid1 released
utopic	Fixed 1:20150714.1-0utopic1 released
trusty	Fixed 1:20150714.1-0trusty1 released
precise	Fixed 1:20150714.1-0precise1 released

flashplugin-nonfree

vivid	Fixed 11.2.202.481ubuntu0.15.04.2 released
utopic	Fixed 11.2.202.481ubuntu0.14.10.2 released
trusty	Fixed 11.2.202.481ubuntu0.14.04.2 released
precise	Fixed 11.2.202.481ubuntu0.12.04.2 released