Global leaders are coming to Zenith Live. Are you? Learn More
Global leaders are coming to Zenith Live. Are you?
Learn More

 

Security Advisory - October 01, 2015

Zscaler Protects against Multiple Security Vulnerabilities in Adobe Flash Player

 

 

Zscaler, working with Microsoft through their MAPP program, has deployed protections for the following 13 vulnerabilities included in the September 2015 Adobe security bulletins. Zscaler will continue to monitor exploits associated with all vulnerabilities in the September release and deploy additional protections as necessary.

APSB15-23 - Security updates available for Adobe Flash Player

Severity: Critical
Affected Software

  • Adobe Flash Player Desktop Runtime 18.0.0.232 and earlier
  • Adobe Flash Player Extended Support Release 18.0.0.232 and earlier
  • Adobe Flash Player for Google Chrome 18.0.0.223 and earlier
  • Adobe Flash Player for Microsoft Edge and Internet Explorer 11 18.0.0.232 and earlier
  • Adobe Flash Player for Internet Explorer 10 and 11 18.0.0.232 and earlier
  • Adobe Flash Player for Linux 11.2.202.508 and earlier
  • AIR Desktop Runtime 18.0.0.199 and earlier
  • AIR SDK 18.0.0.199 and earlier
  • AIR SDK & Compiler 18.0.0.180 and earlier
  • AIR for Android 18.0.0.143 and earlier

CVE-2015-5567 - Flash Player Stack Corruption Vulnerability

CVE-2015-5570 - Flash Player Use After Free Vulnerability

CVE-2015-5572 - Flash Player Security Bypass Vulnerability

CVE-2015-5573 - Flash Player Security Bypass Vulnerability

CVE-2015-5574 - Flash Player Use After Free Vulnerability

CVE-2015-5582 - Flash Player Memory Corruption Vulnerability

CVE-2015-5584 - Flash Player Use After Free Vulnerability

CVE-2015-5587 - Flash Player Stack Overflow Vulnerability

CVE-2015-5588 - Flash Player Memory Corruption Vulnerability

CVE-2015-6676 - Flash Player Buffer Overflow Vulnerability

CVE-2015-6678 - Flash Player Buffer Overflow Vulnerability

CVE-2015-6679 - Flash Player Same-Origin-Policy Vulnerability

CVE-2015-6682 - Flash Player Use After Free Vulnerability

Description: Critical vulnerabilities have been identified in Adobe Flash Player. Successful exploitation could cause a crash and potentially allow an attacker to take control of the affected system.