Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2015-5571

EPSS 1.42% · P81
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2015-5571

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK & Compiler before 19.0.0.190 do not properly restrict the SWF file format, which allows remote attackers to conduct cross-site request forgery (CSRF) attacks against JSONP endpoints, and obtain sensitive information, via a crafted OBJECT element with SWF content satisfying the character-set requirements of a callback API. NOTE: this issue exists because of an incomplete fix for CVE-2014-4671 and CVE-2014-5333.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
多款Adobe产品信息泄露漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Adobe Flash Player、Adobe AIR SDK和Adobe AIR SDK & Compiler都是美国奥多比(Adobe)公司的产品。Adobe Flash Player是一款多媒体播放器产品;Adobe AIR SDK和Adobe AIR SDK & Compiler都是适用于Adobe AIR(一个跨操作系统的运行时环境)的标准开发工具包。 多款Adobe产品中存在安全漏洞,该漏洞源于程序没有正确限制SWF文件格式。远程攻击者可借助包含SWF内容的特制的OBJECT元素利用该漏洞对
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2015-5571

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2015-5571

Please Login to view more intelligence information

Same Patch Batch · n/a · 2015-09-22 · 26 CVEs total

CVE-2015-5578多款Adobe产品缓冲区溢出漏洞
CVE-2015-6682多款Adobe产品释放后重用漏洞
CVE-2015-6679多款Adobe产品安全漏洞
CVE-2015-6678多款Adobe产品缓冲区溢出漏洞
CVE-2015-6677多款Adobe产品缓冲区溢出漏洞
CVE-2015-6676多款Adobe产品缓冲区溢出漏洞
CVE-2015-5588多款Adobe产品缓冲区溢出漏洞
CVE-2015-5587多款Adobe产品基于栈的缓冲区溢出漏洞
CVE-2015-5584多款Adobe产品释放后重用漏洞
CVE-2015-5582多款Adobe产品内存损坏漏洞
CVE-2015-5581多款Adobe产品释放后重用漏洞
CVE-2015-5580多款Adobe产品缓冲区溢出漏洞
CVE-2015-5579多款Adobe产品缓冲区溢出漏洞
CVE-2015-6940Pentaho Business Analytics和Pentaho Data Integration 信息泄露漏洞
CVE-2015-5577多款Adobe产品缓冲区溢出漏洞
CVE-2015-5576多款Adobe产品信息泄露漏洞
CVE-2015-5575多款Adobe产品缓冲区溢出漏洞
CVE-2015-5574多款Adobe产品释放后重用漏洞
CVE-2015-5573多款Adobe产品任意代码执行漏洞
CVE-2015-5572多款Adobe产品信息泄露漏洞

Showing top 20 of 26 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2015-5571

No comments yet

Leave a comment