Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-2016-4232

Published: 13/07/2016 Updated: 26/01/2023
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 505
Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Subscribe to Adobe

Vulnerability Summary

Adobe Flash Player prior to 18.0.0.366 and 19.x up to and including 22.x prior to 22.0.0.209 on Windows and OS X and prior to 11.2.202.632 on Linux allows malicious users to obtain sensitive information from process memory via unspecified vectors.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

adobe flash_player_desktop_runtime

adobe flash_player

Vendor Advisories

Red Hat: CVE-2016-4232
Adobe Flash Player before 1800366 and 19x through 22x before 2200209 on Windows and OS X and before 112202632 on Linux allows attackers to obtain sensitive information from process memory via unspecified vectors ...

Exploits

Exploit DB: Adobe Flash - Transform.colorTranform Getter Infomation Leak
Source: bugschromiumorg/p/project-zero/issues/detail?id=845 There is an info leak in the TransformcolorTranform getter If the constructor for ColorTransform is overwritten with a getter using addProperty, this getter will execute when fetching the constructor, which can then free the MovieClip containing the Tranform A minimal PoC is ...

References

CWE-401https://helpx.adobe.com/security/products/flash-player/apsb16-25.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-07/msg00017.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-07/msg00016.htmlhttp://www.securityfocus.com/bid/91724https://security.gentoo.org/glsa/201607-03http://www.securitytracker.com/id/1036280https://www.exploit-db.com/exploits/40355/https://access.redhat.com/errata/RHSA-2016:1423https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-093https://nvd.nist.govhttps://www.exploit-db.com/exploits/40355/https://access.redhat.com/security/cve/cve-2016-4232
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377CVE-2024-20859CVE-2023-49606injectarbitrary CVE-2024-33788CVE-2024-30973IDORCVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook