CVE-2015-5560

EXPLOITED

Adobe Flash Player <18.0.0.232/11.2.202.508 - RCE

Title source: llm

Exploitation Summary

CVE-2015-5560 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including Google Security Research.

AI-analyzed exploit summary This exploit leverages an integer overflow in Adobe Flash when processing compressed ID3 data in MP3 files larger than 0x2aaaaaaa bytes, leading to a buffer overflow on 64-bit platforms. The PoC includes an SWF and MP3 file to trigger the vulnerability.

Description

Integer overflow in Adobe Flash Player before 18.0.0.232 on Windows and OS X and before 11.2.202.508 on Linux, Adobe AIR before 18.0.0.199, Adobe AIR SDK before 18.0.0.199, and Adobe AIR SDK & Compiler before 18.0.0.199 allows attackers to execute arbitrary code via unspecified vectors.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Google Security Research · textdosmultiple

https://www.exploit-db.com/exploits/37882

View Code ZIP pw:eip

This exploit leverages an integer overflow in Adobe Flash when processing compressed ID3 data in MP3 files larger than 0x2aaaaaaa bytes, leading to a buffer overflow on 64-bit platforms. The PoC includes an SWF and MP3 file to trigger the vulnerability.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Adobe Flash Player (64-bit)

No auth needed

Prerequisites: 64-bit platform · Adobe Flash Player installed · Victim must open the malicious SWF and MP3 files

MITRE ATT&CK