Vulnerability CVE-2016-7855

Vulnerability Name:

CVE-2016-7855 (CCN-118281)

Assigned:

2016-10-26

Published:

2016-10-26

Updated:

2019-05-16

Summary:

Use-after-free vulnerability in Adobe Flash Player before 23.0.0.205 on Windows and OS X and before 11.2.202.643 on Linux allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in October 2016.

CVSS v3 Severity:

8.8 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)
7.7 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

7.8 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)
6.8 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

9.3 High (CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

6.8 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

CWE-416

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2016-7855

Source: CCN
Type: RHSA-2016-2119
Critical: flash-plugin security update

Source: REDHAT
Type: Third Party Advisory
RHSA-2016:2119

Source: CCN
Type: Microsoft Security Bulletin MS16-128
Security Update for Adobe Flash Player

Source: BID
Type: Third Party Advisory, VDB Entry
93861

Source: CCN
Type: BID-93861
Adobe Flash Player CVE-2016-7855 Use After Free Remote Code Execution Vulnerability

Source: SECTRACK
Type: Third Party Advisory, VDB Entry
1037111

Source: MS
Type: Patch, Vendor Advisory
MS16-128

Source: XF
Type: UNKNOWN
adobe-flash-cve20167855-code-exec(118281)

Source: CCN
Type: Adobe Security Bulletin APSB16-36
Security updates available for Adobe Flash Player

Source: CONFIRM
Type: Patch, Vendor Advisory
https://helpx.adobe.com/security/products/flash-player/apsb16-36.html

Source: GENTOO
Type: Third Party Advisory
GLSA-201610-10

Source: MISC
Type: Third Party Advisory
https://security.googleblog.com/2016/10/disclosing-vulnerabilities-to-protect.html

Source: CCN
Type: CYBERSECURITY & INFRASTRUCTURE SECURITY AGENCY
KNOWN EXPLOITED VULNERABILITIES CATALOG

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2016-7855

Vulnerable Configuration:

Configuration 1:

cpe:/a:adobe:flash_player:*:*:*:*:*:chrome:*:* (Version <= 23.0.0.185)

AND

cpe:/o:apple:mac_os_x:-:*:*:*:*:*:*:*

OR cpe:/o:google:chrome_os:-:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:-:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows:-:*:*:*:*:*:*:*

Configuration 2:

cpe:/a:adobe:flash_player:*:*:*:*:*:edge:*:* (Version <= 23.0.0.185)

OR cpe:/a:adobe:flash_player:*:*:*:*:*:internet_explorer:*:* (Version <= 23.0.0.185)

AND

cpe:/o:microsoft:windows_10:-:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_10:1511:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_10:1607:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_8.1:-:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*

Configuration 3:

cpe:/a:adobe:flash_player:*:*:*:*:*:linux:*:* (Version <= 11.2.202.637)

AND

cpe:/o:linux:linux_kernel:-:*:*:*:*:*:*:*

Configuration 4:

cpe:/a:adobe:flash_player:*:*:*:*:*:*:*:* (Version <= 23.0.0.185)

AND

cpe:/o:apple:mac_os_x:-:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows:-:*:*:*:*:*:*:*

Configuration 5:

cpe:/o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:adobe:flash_player:23.0.0.185:*:*:*:*:*:*:*

OR cpe:/a:adobe:flash_player:23.0.0.185::~~~chrome~~:*:*:*:*:*

OR cpe:/a:adobe:flash_player:23.0.0.185:*:*:*:*:*:*:*

OR cpe:/a:adobe:flash_player:11.2.202.637:*:*:*:*:linux:*:*

AND

cpe:/o:redhat:enterprise_linux_server_supplementary:6:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_workstation_supplementary:6:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_desktop_supplementary:6:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_server_2012:*:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_8.1:-:-:-:*:-:-:x32:*

OR cpe:/o:microsoft:windows_8.1:::~~~~x64~:*:*:*:*:*

OR cpe:/o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20167855	V	CVE-2016-7855	2022-05-20
oval:org.opensuse.security:def:47260	P	gdk-pixbuf-lang-2.34.0-18.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47019	P	libfreetype6-2.6.3-7.8.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47331	P	libarchive13-3.1.2-25.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47103	P	mailman-2.1.17-1.18 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47969	P	ceph-common-12.2.12+git.1568024032.02236657ca-2.39.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48023	P	gnome-settings-daemon-3.20.1-50.16.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47165	P	tar-1.27.1-8.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47229	P	cron-4.2-58.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:11818	P	gnome-keyring-3.20.0-27.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11676	P	mutt-1.5.21-49.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11827	P	gstreamer-0_10-plugins-bad-0.10.23-20.51 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11751	P	yast2-core-3.1.18-1.5 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11840	P	java-1_8_0-openjdk-1.8.0.101-14.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11776	P	cpio-2.11-29.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12478	P	guile-2.0.9-8.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11527	P	empathy-3.10.3-1.131 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12500	P	lftp-4.7.4-3.3.20 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46435	P	gv-3.7.4-1.36 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11549	P	gnutls-3.2.15-11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46567	P	quagga-0.99.22.1-3.117 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11595	P	libdcerpc-binding0-32bit-4.2.4-4.19 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11519	P	dhcp-4.3.3-2.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46658	P	fuse-2.9.3-5.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11642	P	libraptor2-0-2.0.10-3.67 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46805	P	p7zip-9.20.1-3.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11657	P	libtasn1-3.7-4.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:55834	P	Security update for MozillaFirefox (Important)	2021-01-29
oval:org.opensuse.security:def:24614	P	Security update for ntp (Moderate)	2020-12-01
oval:org.opensuse.security:def:52983	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:24415	P	Security update for hostinfo, supportutils (Important)	2020-12-01
oval:org.opensuse.security:def:24695	P	Security update for openldap2 (Important)	2020-12-01
oval:org.opensuse.security:def:53123	P	Security update for libxml2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:46110	P	Security update for spice-gtk (Moderate)	2020-12-01
oval:org.opensuse.security:def:24751	P	Security update for wavpack (Moderate)	2020-12-01
oval:org.opensuse.security:def:53361	P	Security update for qemu (Important)	2020-12-01
oval:org.opensuse.security:def:46123	P	Security update for postgresql, postgresql96, postgresql10 and postgresql12 (Moderate)	2020-12-01
oval:org.opensuse.security:def:25124	P	Security update for gd (Moderate)	2020-12-01
oval:org.opensuse.security:def:52960	P	Security update for glib2 (Important)	2020-12-01
oval:org.opensuse.security:def:24834	P	Security update for squid (Important)	2020-12-01
oval:org.opensuse.security:def:53534	P	Security update for avahi (Moderate)	2020-12-01
oval:org.opensuse.security:def:46243	P	Security update for the Linux Kernel (Live Patch 25 for SLE 12 SP3) (Important)	2020-12-01
oval:org.opensuse.security:def:25138	P	Security update for dovecot22 (Important)	2020-12-01
oval:org.opensuse.security:def:54291	P	libopenssl1_0_0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:24984	P	Security update for openexr (Moderate)	2020-12-01
oval:org.opensuse.security:def:53640	P	Security update for squid (Important)	2020-12-01
oval:org.opensuse.security:def:25182	P	Security update for krb5-appl (Important)	2020-12-01
oval:org.opensuse.security:def:54365	P	python-imaging on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:46109	P	Security update for spice (Moderate)	2020-12-01
oval:org.opensuse.security:def:25037	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:53806	P	Security update for dia (Moderate)	2020-12-01
oval:org.opensuse.security:def:25820	P	Security update for xerces-c (Moderate)	2020-12-01
oval:org.opensuse.security:def:54403	P	xalan-j2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:24425	P	Security update for ucode-intel (Important)	2020-12-01
oval:org.opensuse.security:def:54091	P	pam on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25855	P	Security update for flash-player (Critical)	2020-12-01
oval:org.opensuse.security:def:54484	P	gnutls on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:24488	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:52961	P	Security update for postgresql10 (Moderate)	2020-12-01
oval:org.opensuse.security:def:54199	P	fuse on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55760	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.cisecurity:def:1331	V	Use-after-free vulnerability in Adobe Flash Player before 23.0.0.205 on Windows - CVE-2016-7855	2016-12-09
oval:com.ubuntu.precise:def:20167855000	V	CVE-2016-7855 on Ubuntu 12.04 LTS (precise) - medium.	2016-11-01
oval:com.ubuntu.trusty:def:20167855000	V	CVE-2016-7855 on Ubuntu 14.04 LTS (trusty) - medium.	2016-11-01
oval:com.ubuntu.xenial:def:201678550000000	V	CVE-2016-7855 on Ubuntu 16.04 LTS (xenial) - medium.	2016-11-01
oval:com.ubuntu.xenial:def:20167855000	V	CVE-2016-7855 on Ubuntu 16.04 LTS (xenial) - medium.	2016-11-01
oval:org.opensuse.security:def:78468	P	Security update for flash-player (Critical)	2016-10-27

BACK