Adobe Flash ActionScript3 ByteArray Use After Free Vulnerability (CVE-2015-5119)
Schweregrad: : Crítico
Identificador(es) CVE: : CVE-2015-5119
Data do informe: 07 julho 2015
Descrição
Adobe Flash Player contains a vulnerability in the ActionScript 3 ByteArray class, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system.
Ref: http://blog.trendmicro.com/trendlabs-security-intelligence/unpatched-flash-player-flaws-more-pocs-found-in-hacking-team-leak/
Exposição das informações
Apply associated Trend Micro DPI Rules.
Solução
Alteração: : https://helpx.adobe.com/security/products/flash-player/apsb15-16.html
Trend Micro Deep Security DPI Rule Number: 1006824