科学数据库门户
您当前的位置是:
 | 
搜索   在 
 首页
新闻中心
漏洞数据
服务公告
服务案例
使用指南
关于本库
T-DB
 
Adobe Flash Player缓冲区溢出

漏洞编号: NIPC-2014-1666
CVE编号: CVE-2014-0515
漏洞类别: 许可,权限和访问控制错误
发布日期: 2014-04-29
更新日期: 2014-04-29
CVSS值: 10.0
严重级别: 紧急
利用范围: 网络
攻击复杂度:
认证级别: 没有
机密性影响: 整体
完整性影响: 整体
可用性影响: 整体
漏洞描述:

Adobe Flash Player 中存在缓冲区溢出, 受影响的产品, 版本早于 11.7.700.279 和 11.8.x 至 13.0.x , 版本早于 13.0.0.206 的 Windows 和 OS X , 以及 , 版本早于 11.2.202.356 的 Linux , 由于对内存缓冲区的创建、修改、管理或删除有误, 允许远程攻击者 , 通过未知的向量, 执行任意代码


受影响系统或软件:
Configuration 1 AND OR * cpe:/a:adobe:flash_player:11.2.202.350 and previous versions * cpe:/a:adobe:flash_player:11.2.202.223 * cpe:/a:adobe:flash_player:11.2.202.228 * cpe:/a:adobe:flash_player:11.2.202.233 * cpe:/a:adobe:flash_player:11.2.202.235 * cpe:/a:adobe:flash_player:11.2.202.236 * cpe:/a:adobe:flash_player:11.2.202.238 * cpe:/a:adobe:flash_player:11.2.202.243 * cpe:/a:adobe:flash_player:11.2.202.251 * cpe:/a:adobe:flash_player:11.2.202.258 * cpe:/a:adobe:flash_player:11.2.202.261 * cpe:/a:adobe:flash_player:11.2.202.262 * cpe:/a:adobe:flash_player:11.2.202.270 * cpe:/a:adobe:flash_player:11.2.202.273 * cpe:/a:adobe:flash_player:11.2.202.275 * cpe:/a:adobe:flash_player:11.2.202.280 * cpe:/a:adobe:flash_player:11.2.202.285 * cpe:/a:adobe:flash_player:11.2.202.291 * cpe:/a:adobe:flash_player:11.2.202.297 * cpe:/a:adobe:flash_player:11.2.202.310 * cpe:/a:adobe:flash_player:11.2.202.332 * cpe:/a:adobe:flash_player:11.2.202.335 * cpe:/a:adobe:flash_player:11.2.202.336 * cpe:/a:adobe:flash_player:11.2.202.341 * cpe:/a:adobe:flash_player:11.2.202.346 OR cpe:/o:linux:linux_kernel Configuration 2 AND OR * cpe:/a:adobe:flash_player:13.0.0.182 * cpe:/a:adobe:flash_player:11.8.800.168 * cpe:/a:adobe:flash_player:11.8.800.94 * cpe:/a:adobe:flash_player:11.8.800.97 * cpe:/a:adobe:flash_player:11.7.700.275 and previous versions * cpe:/a:adobe:flash_player:11.7.700.169 * cpe:/a:adobe:flash_player:11.7.700.202 * cpe:/a:adobe:flash_player:11.7.700.224 * cpe:/a:adobe:flash_player:11.7.700.225 * cpe:/a:adobe:flash_player:11.7.700.232 * cpe:/a:adobe:flash_player:11.7.700.242 * cpe:/a:adobe:flash_player:11.7.700.257 * cpe:/a:adobe:flash_player:11.7.700.260 * cpe:/a:adobe:flash_player:11.7.700.261 * cpe:/a:adobe:flash_player:11.7.700.269 * cpe:/a:adobe:flash_player:11.7.700.272 * cpe:/a:adobe:flash_player:13.0.0.201 and previous versions OR cpe:/o:apple:mac_os_x Configuration 3 AND OR * cpe:/a:adobe:flash_player:13.0.0.182 and previous versions * cpe:/a:adobe:flash_player:11.8.800.168 * cpe:/a:adobe:flash_player:11.8.800.94 * cpe:/a:adobe:flash_player:11.8.800.97 * cpe:/a:adobe:flash_player:11.7.700.275 and previous versions * cpe:/a:adobe:flash_player:11.7.700.169 * cpe:/a:adobe:flash_player:11.7.700.202 * cpe:/a:adobe:flash_player:11.7.700.224 * cpe:/a:adobe:flash_player:11.7.700.225 * cpe:/a:adobe:flash_player:11.7.700.232 * cpe:/a:adobe:flash_player:11.7.700.242 * cpe:/a:adobe:flash_player:11.7.700.257 * cpe:/a:adobe:flash_player:11.7.700.260 * cpe:/a:adobe:flash_player:11.7.700.261 * cpe:/a:adobe:flash_player:11.7.700.269 * cpe:/a:adobe:flash_player:11.7.700.272 OR cpe:/o:microsoft:windows

解决方案:
厂商已修复该漏洞

参考资源:
http://security.gentoo.org/glsa/glsa-201402-12.xml

致  谢 
友情链接