CVE-2015-3106

Adobe Flash Player <13.0.0.292-18.x - RCE

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2015-3106. PoCs published by bilou.

AI-analyzed exploit summary This exploit demonstrates a use-after-free vulnerability in Adobe Flash Player's ActionScript 2 TextField.filters array property. It bypasses a patch by manipulating the 'in use' flag, leading to a crash or potential arbitrary code execution.

Description

Use-after-free vulnerability in Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160 on Windows and OS X and before 11.2.202.466 on Linux, Adobe AIR before 18.0.0.144 on Windows and before 18.0.0.143 on OS X and Android, Adobe AIR SDK before 18.0.0.144 on Windows and before 18.0.0.143 on OS X, and Adobe AIR SDK & Compiler before 18.0.0.144 on Windows and before 18.0.0.143 on OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-3103 and CVE-2015-3107.

Exploits (1)

exploitdb WORKING POC VERIFIED

by bilou · textdoswindows

https://www.exploit-db.com/exploits/37847

View Code ZIP pw:eip

This exploit demonstrates a use-after-free vulnerability in Adobe Flash Player's ActionScript 2 TextField.filters array property. It bypasses a patch by manipulating the 'in use' flag, leading to a crash or potential arbitrary code execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Complex

Reliability

Reliable

Target: Adobe Flash Player 17.0.0.169

No auth needed

Prerequisites: Adobe Flash Player 17.0.0.169 installed · Victim must open a malicious SWF file

MITRE ATT&CK