CVE-2015-0313 : Use-after-free vulnerability in Adobe Flash Player before 13.0.0.269 and 14.x th

Use-after-free vulnerability in Adobe Flash Player before 13.0.0.269 and 14.x through 16.x before 16.0.0.305 on Windows and OS X and before 11.2.202.442 on Linux allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in February 2015, a different vulnerability than CVE-2015-0315, CVE-2015-0320, and CVE-2015-0322.

Published 2015-02-02 19:59:00

Updated 2025-04-12 10:46:41

Source Adobe Systems Incorporated

View at NVD, CVE.org

Vulnerability category: Memory CorruptionExecute code

Products affected by CVE-2015-0313

Microsoft » Internet Explorer » Version: 10
cpe:2.3:a:microsoft:internet_explorer:10:*:*:*:*:*:*:*
Matching versions
When used together with: Microsoft » Windows 8 » Version: N/A
When used together with: Microsoft » Windows Rt » Version: N/A
When used together with: Microsoft » Windows Server 2012 » Version: N/A
Microsoft » Internet Explorer » Version: 11
cpe:2.3:a:microsoft:internet_explorer:11:-:*:*:*:*:*:*
Matching versions
When used together with: Microsoft » Windows 10 1507 » Version: N/A
When used together with: Microsoft » Windows 8.1 » Version: N/A
When used together with: Microsoft » Windows Rt 8.1 » Version: N/A
When used together with: Microsoft » Windows Server 2012 » Version: R2
Microsoft » Edge » Version: N/A
cpe:2.3:a:microsoft:edge:-:*:*:*:*:*:*:*
Matching versions
When used together with: Microsoft » Windows 10 1507 » Version: N/A
Adobe » Flash Player
Versions from including (>=) 14.0.0.125 and before (<) 16.0.0.305
cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X » Version: N/A
When used together with: Microsoft » Windows » Version: N/A
Adobe » Flash Player
Versions before (<) 11.2.202.442
cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*
Matching versions
When used together with: Linux » Linux Kernel » Version: N/A
Adobe » Flash Player
Versions before (<) 13.0.0.269
cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*
Matching versions
When used together with: Apple » Mac Os X » Version: N/A
When used together with: Microsoft » Windows » Version: N/A
Suse » Linux Enterprise Desktop » Version: 11 Update SP3
cpe:2.3:o:suse:linux_enterprise_desktop:11:sp3:*:*:*:*:*:*
Matching versions
Suse » Linux Enterprise Desktop » Version: 12
cpe:2.3:o:suse:linux_enterprise_desktop:12:-:*:*:*:*:*:*
Matching versions
Suse » Linux Enterprise Workstation Extension » Version: 12
cpe:2.3:o:suse:linux_enterprise_workstation_extension:12:-:*:*:*:*:*:*
Matching versions
Opensuse » Opensuse » Version: 13.2
cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*
Matching versions
Opensuse » Opensuse » Version: 13.1
cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
Matching versions
Opensuse » Evergreen » Version: 11.4
cpe:2.3:o:opensuse:evergreen:11.4:*:*:*:*:*:*:*
Matching versions

CVE-2015-0313 is in the CISA Known Exploited Vulnerabilities Catalog

CISA vulnerability name:

Adobe Flash Player Use-After-Free Vulnerability

CISA required action:

The impacted product is end-of-life and should be disconnected if still in use.

CISA description:

Use-after-free vulnerability in Adobe Flash Player allows remote attackers to execute code.

Notes:

https://nvd.nist.gov/vuln/detail/CVE-2015-0313

Added on 2022-04-13 Action due date 2022-05-04

Exploit prediction scoring system (EPSS) score for CVE-2015-0313

EPSS FAQ

93.40%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 100 %

Percentile, the proportion of vulnerabilities that are scored at or less

Metasploit modules for CVE-2015-0313

Adobe Flash Player ByteArray With Workers Use After Free

Disclosure Date: 2015-02-02

First seen: 2020-04-26

exploit/windows/browser/adobe_flash_worker_byte_array_uaf

This module exploits a use-after-free vulnerability in Adobe Flash Player. The vulnerability occurs when the ByteArray assigned to the current ApplicationDomain is freed from an ActionScript worker, which can fill the memory and notify the main thread to corrupt the

More information

CVSS scores for CVE-2015-0313

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
10.0	HIGH	AV:N/AC:L/Au:N/C:C/I:C/A:C	10.0	10.0	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete
9.8	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	3.9	5.9	134c704f-9b21-4f2e-91b3-4a467353bcc0	2025-02-04
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High
9.8	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	3.9	5.9	NIST	2024-07-02
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2015-0313

CWE-416 Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.
Assigned by:
- 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)
- nvd@nist.gov (Primary)

References for CVE-2015-0313

http://secunia.com/advisories/62528

Sign in
Broken Link
http://www.osvdb.org/117853

404 Not Found
Broken Link
https://technet.microsoft.com/library/security/2755801

Microsoft Security Advisory 2755801 | Microsoft Docs
Patch;Vendor Advisory

CVEs referencing this url
https://www.exploit-db.com/exploits/36579/

Exploit;Third Party Advisory;VDB Entry
http://www.securityfocus.com/bid/72429

Broken Link;Third Party Advisory;VDB Entry
http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00008.html

Mailing List;Third Party Advisory

CVEs referencing this url
https://helpx.adobe.com/security/products/flash-player/apsb15-04.html

Broken Link

CVEs referencing this url
http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00007.html

Mailing List;Third Party Advisory

CVEs referencing this url
http://secunia.com/advisories/62895

Broken Link

CVEs referencing this url
http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00009.html

Mailing List;Third Party Advisory

CVEs referencing this url
http://packetstormsecurity.com/files/131189/Adobe-Flash-Player-ByteArray-With-Workers-Use-After-Free.html

Adobe Flash Player ByteArray With Workers Use After Free ≈ Packet Storm
Exploit;Third Party Advisory;VDB Entry
http://www.securitytracker.com/id/1031686

Adobe Flash Player Use-After-Free Memory Error Lets Remote Users Execute Arbitrary Code - SecurityTracker
Broken Link;Third Party Advisory;VDB Entry
https://helpx.adobe.com/security/products/flash-player/apsa15-02.html

Adobe Security Bulletin
Vendor Advisory
http://secunia.com/advisories/62777

Sign in
Broken Link

CVEs referencing this url
https://exchange.xforce.ibmcloud.com/vulnerabilities/100641

Adobe Flash Player code execution CVE-2015-0313 Vulnerability Report
Third Party Advisory;VDB Entry
http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00006.html

[security-announce] SUSE-SU-2015:0236-1: critical: Security update for f
Mailing List;Third Party Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2015-0313