Zscaler, working with Microsoft through their MAPP program, has deployed protections for the following 11 vulnerabilities included in the December 2015 Adobe security bulletins. Zscaler will continue to monitor exploits associated with all vulnerabilities in the December release and deploy additional protections as necessary.
APSB15-32 – Security updates available for Flash Player
Severity: Critical Affected Software
CVE-2015-8457 – Flash Player Stack Overflow Vulnerability
CVE-2015-8449 – Flash Player Use After Free Vulnerability
CVE-2015-8448 – Flash Player Use After Free Vulnerability
CVE-2015-8447 – Flash Player Use After Free Vulnerability
CVE-2015-8439 – Flash Player Type Confusion Vulnerability
CVE-2015-8438 – Flash Player Heap Overflow Vulnerability
CVE-2015-8437 – Flash Player Use After Free Vulnerability
CVE-2015-8418 – Flash Player Memory Corruption Vulnerability
CVE-2015-8414 – Flash Player Use After Free Vulnerability
CVE-2015-8407 – Flash Player Stack Overflow Vulnerability
CVE-2015-8048 – Flash Player Memory Corruption Vulnerability
Description: Critical vulnerabilities have been identified in Adobe Flash Player. Successful exploitation could cause a crash and potentially allow an attacker to take control of the affected system.