CVE-2015-5122

critical-risk

Published 2015-07-14

Use-after-free vulnerability in the DisplayObject class in the ActionScript 3 (AS3) implementation in Adobe Flash Player 13.x through 13.0.0.302 on Windows and OS X, 14.x through 18.0.0.203 on Windows and OS X, 11.x through 11.2.202.481 on Linux, and 12.x through 18.0.0.204 on Linux Chrome installations allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted Flash content that leverages improper handling of the opaqueBackground property, as exploited in the wild in July 2015.

Do I need to act?

92.8% chance of exploitation in next 30 days

EPSS score — higher than 7% of all CVEs

CISA KEV: actively exploited in the wild

On the Known Exploited Vulnerabilities catalog — federal agencies must patch

1 public exploit available

37599

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 9.8/10 Critical

NETWORK / LOW complexity

Affected Products (18)

Flash Player

Flash Player Desktop Runtime

Flash Player

Enterprise Linux Desktop

Enterprise Linux Server

Enterprise Linux Server Eus

Enterprise Linux Workstation

Evergreen

Linux Enterprise Workstation Extension

Flash Player

Enterprise Linux Desktop

Enterprise Linux Server

Enterprise Linux Workstation

Linux Enterprise Desktop

Affected Vendors

Opensuse Redhat Adobe Suse

References (42)

Mailing List http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00028.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00029.html

Mailing List http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00032.html

Mailing List http://marc.info/?l=bugtraq&m=144050155601375&w=2

Exploit http://packetstormsecurity.com/files/132663/Adobe-Flash-opaqueBackground-Use-Aft...

Third Party Advisory http://rhn.redhat.com/errata/RHSA-2015-1235.html

Third Party Advisory http://www.kb.cert.org/vuls/id/338736

Third Party Advisory http://www.rapid7.com/db/modules/exploit/multi/browser/adobe_flash_opaque_backgr...

Broken Link http://www.securityfocus.com/bid/75712

Broken Link http://www.securitytracker.com/id/1032890

Third Party Advisory http://www.us-cert.gov/ncas/alerts/TA15-195A

Broken Link https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c0...

Third Party Advisory https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c...

Broken Link https://helpx.adobe.com/security/products/flash-player/apsa15-04.html

Broken Link https://helpx.adobe.com/security/products/flash-player/apsb15-18.html

Broken Link https://perception-point.io/2018/04/11/breaking-cfi-cve-2015-5122-coop/

Broken Link https://perception-point.io/new/breaking-cfi.php

Third Party Advisory https://security.gentoo.org/glsa/201508-01

Exploit https://www.exploit-db.com/exploits/37599/

Broken Link https://www.fireeye.com/blog/threat-research/2015/07/cve-2015-5122_-_seco.html

and 22 more references

/ 100

critical-risk

Severity 32/34 · Critical

Exploitability 34/34 · Critical

Exposure 19/34 · Moderate