Adobe Flash ActionScript3 ByteArray Use After Free Vulnerability (CVE-2015-5119)
2016年6月9日
风险等级: 緊急
CVE标识符: : CVE-2015-5119
建议日期 : 2015年7月7日
描述
Adobe Flash Player contains a vulnerability in the ActionScript 3 ByteArray class, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system.
Ref: http://blog.trendmicro.com/trendlabs-security-intelligence/unpatched-flash-player-flaws-more-pocs-found-in-hacking-team-leak/
保护信息
Apply associated Trend Micro DPI Rules.
解决方案
补丁: https://helpx.adobe.com/security/products/flash-player/apsb15-16.html
Trend Micro Deep Security DPI Rule Number: 1006824