Adobe Flash ActionScript3 ByteArray Use After Free Vulnerability (CVE-2015-5119)
Publish Date: 09 czerwca 2016
Severity: : Critical
Advisory Date: 09 czerwca 2016
DESCRIPTION
Adobe Flash Player contains a vulnerability in the ActionScript 3 ByteArray class, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system.
Ref: http://blog.trendmicro.com/trendlabs-security-intelligence/unpatched-flash-player-flaws-more-pocs-found-in-hacking-team-leak/
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1006824