FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Adobe Flash Player -- critical vulnerability

Affected packages
linux-c6-flashplugin <= 11.2r202.438
linux-f10-flashplugin <= 11.2r202.438

Details

VuXML ID 37a87ade-a59f-11e4-958e-0011d823eebd
Discovery 2015-01-22
Entry 2015-01-26

Adobe reports:

Successful exploitation could cause a crash and potentially allow an attacker to take control of the affected system. We are aware of reports that this vulnerability is being actively exploited in the wild via drive-by-download attacks against systems running Internet Explorer and Firefox on Windows 8.1 and below.

References

CVE Name CVE-2015-0311
URL https://helpx.adobe.com/security/products/flash-player/apsa15-01.html