CVE-2015-8636

HIGH

Adobe AIR < 20.0.0.233 - Remote Code Execution via Memory Corruption

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2015-8636. PoCs published by Google Security Research.

AI-analyzed exploit summary This exploit leverages an out-of-bounds memset vulnerability in Adobe Flash's BlurFilter processing, leading to potential remote code execution. The provided SWF file triggers the vulnerability, causing a crash in Chrome during processing.

Description

Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR SDK before 20.0.0.233, and Adobe AIR SDK & Compiler before 20.0.0.233 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-8459, CVE-2015-8460, and CVE-2015-8645.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Google Security Research · textdosmultiple

https://www.exploit-db.com/exploits/39219

View Code ZIP pw:eip

This exploit leverages an out-of-bounds memset vulnerability in Adobe Flash's BlurFilter processing, leading to potential remote code execution. The provided SWF file triggers the vulnerability, causing a crash in Chrome during processing.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Adobe Flash Player (versions affected by CVE-2015-8636)

No auth needed

Prerequisites: Victim must open the malicious SWF file in a vulnerable Flash Player environment

MITRE ATT&CK

T1189 - Drive-by Compromise

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (13)

Core 13

Core References

Vendor Advisory vendor-advisory x_refsource_redhat

http://rhn.redhat.com/errata/RHSA-2015-2697.html

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/39219/

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/79700

Third Party Advisory vendor-advisory x_refsource_gentoo

https://security.gentoo.org/glsa/201601-03

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00048.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1034544

Vendor Advisory x_refsource_confirm

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05385680

Patch, Vendor Advisory x_refsource_confirm

https://helpx.adobe.com/security/products/flash-player/apsb16-01.html

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00046.html

Vendor Advisory x_refsource_confirm

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00047.html

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00045.html

Vendor Advisory x_refsource_confirm

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05356388

Scores

CVSS v3 8.8

EPSS 0.2235

EPSS Percentile 97.4%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE

CWE-119

Status published

Products (10)

adobe/air < 20.0.0.204

adobe/air_sdk < 20.0.0.204

adobe/air_sdk_\&_compiler < 20.0.0.204

adobe/flash_player 19.0.0.185

adobe/flash_player 19.0.0.207

adobe/flash_player 19.0.0.226

adobe/flash_player 19.0.0.245

adobe/flash_player 20.0.0.228

adobe/flash_player 20.0.0.235

adobe/flash_player < 18.0.0.268

Published Dec 28, 2015

Tracked Since Feb 18, 2026