CVE-2015-5123
Last modified
CVE-2015-5123 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. Use-after-free vulnerability in the BitmapData class in the ActionScript 3 (AS3) implementation in Adobe Flash Player 13.x through 13.0.0.302 on Windows and OS X, 14.x through 18.0.0.203 on Windows and OS X, 11.x through 11.2.202.481 on Linux, and 12.x through 18.0.0.204 on Linux Chrome installations allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted Flash content that overrides a valueOf function, as exploited in the wild in July 2015.. CISA has confirmed active exploitation in the wild. EPSS estimates a 18.49% chance of exploitation in the next 30 days.
Description
Use-after-free vulnerability in the BitmapData class in the ActionScript 3 (AS3) implementation in Adobe Flash Player 13.x through 13.0.0.302 on Windows and OS X, 14.x through 18.0.0.203 on Windows and OS X, 11.x through 11.2.202.481 on Linux, and 12.x through 18.0.0.204 on Linux Chrome installations allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted Flash content that overrides a valueOf function, as exploited in the wild in July 2015.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitation Status
This vulnerability is listed in CISA’s Known Exploited Vulnerabilities catalog, confirming active exploitation in the wild. Federal agencies must remediate by .
Weakness Enumeration
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Redhat | Enterprise Linux Desktop | 5.0 | — |
| Redhat | Enterprise Linux Desktop | 6.0 | — |
| Redhat | Enterprise Linux Server | 5.0 | — |
| Redhat | Enterprise Linux Server | 6.0 | — |
| Redhat | Enterprise Linux Server Eus | 6.6 | — |
| Redhat | Enterprise Linux Workstation | 5.0 | — |
| Redhat | Enterprise Linux Workstation | 6.0 | — |
| Opensuse | Evergreen | 11.4 | — |
| Suse | Linux Enterprise Desktop | 11 | Sp3 |
| Suse | Linux Enterprise Desktop | 12 | — |
| Suse | Linux Enterprise Workstation Extension | 12 | — |
| Adobe | Flash Player | >= 11.0, <= 11.2.202.481 | — |
| Adobe | Flash Player | >= 13.0, <= 13.0.0.302 | — |
| Adobe | Flash Player | >= 18.0, <= 18.0.0.203 | — |
| Adobe | Flash Player Desktop Runtime | >= 18.0, <= 18.0.0.203 | — |
References
- http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00028.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00029.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00032.htmlMailing List, Third Party Advisory
- http://marc.info/?l=bugtraq&m=144050155601375&w=2Mailing List, Third Party Advisory
- http://rhn.redhat.com/errata/RHSA-2015-1235.htmlThird Party Advisory
- http://www.kb.cert.org/vuls/id/918568Third Party Advisory, US Government Resource
- http://www.securityfocus.com/bid/75710Broken Link, Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1032890Broken Link, Third Party Advisory, VDB Entry
- http://www.us-cert.gov/ncas/alerts/TA15-195AThird Party Advisory, US Government Resource
- https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04796784Broken Link, Third Party Advisory
- https://helpx.adobe.com/security/products/flash-player/apsa15-04.htmlBroken Link, Vendor Advisory
- https://helpx.adobe.com/security/products/flash-player/apsb15-18.htmlBroken Link, Vendor Advisory
- https://security.gentoo.org/glsa/201508-01Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00028.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00029.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00032.htmlMailing List, Third Party Advisory
- http://marc.info/?l=bugtraq&m=144050155601375&w=2Mailing List, Third Party Advisory
- http://rhn.redhat.com/errata/RHSA-2015-1235.htmlThird Party Advisory
- http://www.kb.cert.org/vuls/id/918568Third Party Advisory, US Government Resource
- http://www.securityfocus.com/bid/75710Broken Link, Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1032890Broken Link, Third Party Advisory, VDB Entry
- http://www.us-cert.gov/ncas/alerts/TA15-195AThird Party Advisory, US Government Resource
- https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04796784Broken Link, Third Party Advisory
- https://helpx.adobe.com/security/products/flash-player/apsa15-04.htmlBroken Link, Vendor Advisory
- https://helpx.adobe.com/security/products/flash-player/apsb15-18.htmlBroken Link, Vendor Advisory
- https://security.gentoo.org/glsa/201508-01Third Party Advisory
- https://github.com/cisagov/vulnrichment/issues/196Issue Tracking
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2015-5123US Government Resource
Timeline
- Published
- Last Modified
- Status
- Analyzed
Frequently Asked Questions
What is CVE-2015-5123?
How severe is CVE-2015-5123?
How do I fix CVE-2015-5123?
Are you affected by CVE-2015-5123?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST