Hillstone Networks

RULE（RULE ID：316322）

Rule General Information


Release Date:		2015-08-06

Rule Name:		Adobe Flash Player Integer Overflow Vulnerability -1 (CVE-2015-0338)

Severity:

CVE ID:

Rule Protection Details


Description:		Integer overflow in Adobe Flash Player before 13.0.0.277 and 14.x through 17.x before 17.0.0.134 on Windows and OS X and before 11.2.202.451 on Linux allows attackers to execute arbitrary code via unspecified vectors.

Impact:		An attacker can exploit the affected software with a integer overflow vulnerability. Successful exploit leads to execute arbitrary code, and failed exploit may disturb the software logic and cause denial of service.

Affected OS:		Windows, Mac OS, Other Unix, FreeBSD, Linux

Reference:		SecurityTrackerID:1031922 AdobeSecurityBulletins:apsb15-05

Solutions

Adobe has issued a fix on the official website. For more advisory, please visit https://helpx.adobe.com/security/products/flash-player/apsb15-05.html