7.6
CVSSv2

CVE-2016-1104

Published: 11/05/2016 Updated: 12/10/2018
CVSS v2 Base Score: 7.6 | Impact Score: 10 | Exploitability Score: 4.9
CVSS v3 Base Score: 7.5 | Impact Score: 5.9 | Exploitability Score: 1.6
VMScore: 765
Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C

Vulnerability Summary

Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and previous versions, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

microsoft internet explorer 11

microsoft internet explorer 10

microsoft edge -

adobe flash player

Exploits

Source: bugschromiumorg/p/project-zero/issues/detail?id=794 There is an out of bounds read when placing a corrupt image This issue might be exploitable, depending on what is read A PoC is attached To reproduce issue, put both files on a server, and load: 127001/LoadImageswf?img=70 Proof of Concept: githubcom/of ...