Vulnerability Description
Use-after-free vulnerability in the DisplayObject class in the ActionScript 3 (AS3) implementation in Adobe Flash Player 13.x through 13.0.0.302 on Windows and OS X, 14.x through 18.0.0.203 on Windows and OS X, 11.x through 11.2.202.481 on Linux, and 12.x through 18.0.0.204 on Linux Chrome installations allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted Flash content that leverages improper handling of the opaqueBackground property, as exploited in the wild in July 2015.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Adobe | Flash Player | >= 13.0, <= 13.0.0.302 |
| Adobe | Flash Player Desktop Runtime | >= 18.0, <= 18.0.0.203 |
| Apple | Macos | - |
| Microsoft | Windows | - |
| Linux | Linux Kernel | - |
| Microsoft | Windows 8 | - |
| Microsoft | Windows 8.1 | - |
| Redhat | Enterprise Linux Desktop | 5.0 |
| Redhat | Enterprise Linux Server | 5.0 |
| Redhat | Enterprise Linux Server Eus | 6.6 |
| Redhat | Enterprise Linux Workstation | 5.0 |
| Opensuse | Evergreen | 11.4 |
| Suse | Linux Enterprise Desktop | 11 |
| Suse | Linux Enterprise Workstation Extension | 12 |
Related Weaknesses (CWE)
References
- http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00028.htmlMailing ListThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00029.htmlMailing ListThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00032.htmlMailing ListThird Party Advisory
- http://marc.info/?l=bugtraq&m=144050155601375&w=2Mailing ListThird Party Advisory
- http://packetstormsecurity.com/files/132663/Adobe-Flash-opaqueBackground-Use-AftExploitThird Party AdvisoryVDB Entry
- http://rhn.redhat.com/errata/RHSA-2015-1235.htmlThird Party Advisory
- http://www.kb.cert.org/vuls/id/338736Third Party AdvisoryUS Government Resource
- http://www.rapid7.com/db/modules/exploit/multi/browser/adobe_flash_opaque_backgrThird Party Advisory
- http://www.securityfocus.com/bid/75712Broken LinkThird Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1032890Broken LinkThird Party AdvisoryVDB Entry
- http://www.us-cert.gov/ncas/alerts/TA15-195AThird Party AdvisoryUS Government Resource
- https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c0Broken LinkThird Party Advisory
- https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-cThird Party Advisory
- https://helpx.adobe.com/security/products/flash-player/apsa15-04.htmlBroken LinkVendor Advisory
- https://helpx.adobe.com/security/products/flash-player/apsb15-18.htmlBroken LinkVendor Advisory
FAQ
What is CVE-2015-5122?
CVE-2015-5122 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Use-after-free vulnerability in the DisplayObject class in the ActionScript 3 (AS3) implementation in Adobe Flash Player 13.x through 13.0.0.302 on Windows and OS X, 14.x through 18.0.0.203 on Windows...
How severe is CVE-2015-5122?
CVE-2015-5122 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2015-5122?
Check the references section above for vendor advisories and patch information. Affected products include: Adobe Flash Player, Adobe Flash Player Desktop Runtime, Apple Macos, Microsoft Windows, Linux Linux Kernel.