Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable buffer overflow / underflow vulnerability in the Primetime TVSDK that supports customizing ad information. Successful exploitation could lead to arbitrary code execution.
| Attack Vector (AV) | Network | Adjacent | Local | Physical |
|---|---|---|---|---|
| Attack Complexity (AC) | LOW | High | ||
| Privileges Required (PR) | None | Low | High | |
| User Interaction (UI) | None | Required | ||
| Scope (S) | Unchange | Change | ||
| Confidentiality (C) | None | Low | High | |
| Integrity (I) | None | Low | High | |
| Availability (A) | None | Low | High |
| Attack Vector (AV) | Network | Adjacent | Local |
|---|---|---|---|
| Access Complexity (AC) | Low | Medium | High |
| Authentication (Au) | None | Single | Multiple |
| Confidentiality (C) | None | Partial | Complete |
| Integrity (I) | None | Partial | Complete |
| Availability (A) | None | Partial | Complete |
| CVE Infomation | Exploits or more Infomation |
|---|---|
| mitre | EXPLOIT DATABASE |
| NVD | 0day.today |
| vulmon.com | github |
| CVE Details | |
| JVN ENG JPN | |
| Reconshell |
Software Tag: Chrome(38 tweets) Java(2 tweets) Windows(2 tweets)
| Name | URL |
|---|---|
| No Data | |
| Name | URL |
|---|---|
| No Data | |