Vulnerability Details CVE-2016-7866
Adobe Animate versions 15.2.1.95 and earlier have an exploitable memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.188
EPSS Ranking 95.0%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
- http://hyp3rlinx.altervista.org/advisories/ADOBE-ANIMATE-MEMORY-CORRUPTION-VULNERABILITY.txt
- http://packetstormsecurity.com/files/140164/Adobe-Animate-15.2.1.95-Buffer-Overflow.html
- http://seclists.org/fulldisclosure/2016/Dec/45
- http://www.securityfocus.com/archive/1/539923/100/0/threaded
- http://www.securityfocus.com/bid/94872
- https://helpx.adobe.com/security/products/animate/apsb16-38.html
- https://www.exploit-db.com/exploits/40915/
- http://hyp3rlinx.altervista.org/advisories/ADOBE-ANIMATE-MEMORY-CORRUPTION-VULNERABILITY.txt
- http://packetstormsecurity.com/files/140164/Adobe-Animate-15.2.1.95-Buffer-Overflow.html
- http://seclists.org/fulldisclosure/2016/Dec/45
- http://www.securityfocus.com/archive/1/539923/100/0/threaded
- http://www.securityfocus.com/bid/94872
- https://helpx.adobe.com/security/products/animate/apsb16-38.html
- https://www.exploit-db.com/exploits/40915/