HTTP: Adobe Flash Player CVE-2015-0310 PCRE Memory Access Violation
This signature detects an attempt to exploit an out of bounds memory access error while running a specially crafted Adobe Flash document. Successful exploitation could allow an attacker to terminate the running flash application which could lead to termination of Flash component.
Extended Description
Adobe Flash Player before 13.0.0.262 and 14.x through 16.x before 16.0.0.287 on Windows and OS X and before 11.2.202.438 on Linux does not properly restrict discovery of memory addresses, which allows attackers to bypass the ASLR protection mechanism on Windows, and have an unspecified impact on other platforms, via unknown vectors, as exploited in the wild in January 2015.
References
CVE: CVE-2015-0310
Short Name
HTTP:STC:ADOBE:2015-0310-REGMCP
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
Access Adobe CVE-2015-0310 Flash Memory PCRE Player Violation
Release Date
02/04/2015
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3761
False Positive
Unknown
CVSS Score
10.0