EXPLOITDB-EDB-36360

EXPLOITDB ruby VERIFIED WORKING POC

Exploit for CVE-2015-0311 - Adobe Flash Player ByteArray UncompressViaZlibVariant Use After Free

AI Analysis

This Metasploit module exploits a use-after-free vulnerability in Adobe Flash Player's ByteArray::UncompressViaZlibVariant method. It delivers a malicious SWF file to trigger the vulnerability and execute arbitrary code via a PowerShell payload.

Attack Type

RCE

Complexity

moderate

Reliability

reliable

MITRE ATT&CK

T1189 - Drive-by Compromise T1059 - Command and Scripting Interpreter

Loading exploit code...

Download ZIP Password: eip

Source

Platform Exploitdb

Type remote

Platform windows

Language ruby

Files 1

https://www.exploit-db.com/exploits/36360

Authors

Metasploit juan vazquez hdarwin Unknown

Vulnerability

CVE-2015-0311

Adobe Flash Player ByteArray UncompressViaZlibVariant Use After Free

CRITICAL KEV

CVSS 9.8