CVE-2015-3059
published 2015-05-13CVE-2015-3059: Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allows attackers to execute arbitrary…
PriorityP349critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
10.34%
95.1th percentile
Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-3053, CVE-2015-3054, CVE-2015-3055, and CVE-2015-3075.
Affected
50 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
| adobe | acrobat | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-wgc8-2wwh-f797: Use-after-free vulnerability in Adobe Reader and Acrobat 10
ghsa_unreviewed·2022-05-17·CVSS 10.0
CVE-2015-3055 [CRITICAL] CWE-416 GHSA-wgc8-2wwh-f797: Use-after-free vulnerability in Adobe Reader and Acrobat 10
Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-3053, CVE-2015-3054, CVE-2015-3059, and CVE-2015-3075.
GHSA
GHSA-hvmw-wvjj-3h3x: Use-after-free vulnerability in Adobe Reader and Acrobat 10
ghsa_unreviewed·2022-05-17·CVSS 10.0
CVE-2015-3059 [CRITICAL] CWE-416 GHSA-hvmw-wvjj-3h3x: Use-after-free vulnerability in Adobe Reader and Acrobat 10
Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-3053, CVE-2015-3054, CVE-2015-3055, and CVE-2015-3075.
GHSA
GHSA-f5qr-chhp-9g8p: Use-after-free vulnerability in Adobe Reader and Acrobat 10
ghsa_unreviewed·2022-05-17·CVSS 10.0
CVE-2015-3075 [CRITICAL] CWE-416 GHSA-f5qr-chhp-9g8p: Use-after-free vulnerability in Adobe Reader and Acrobat 10
Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-3053, CVE-2015-3054, CVE-2015-3055, and CVE-2015-3059.
GHSA
GHSA-hqh5-x7wr-q63c: Use-after-free vulnerability in Adobe Reader and Acrobat 10
ghsa_unreviewed·2022-05-17·CVSS 10.0
CVE-2015-3054 [CRITICAL] GHSA-hqh5-x7wr-q63c: Use-after-free vulnerability in Adobe Reader and Acrobat 10
Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-3053, CVE-2015-3055, CVE-2015-3059, and CVE-2015-3075.
GHSA
GHSA-wq8p-3q98-gw6h: Use-after-free vulnerability in Adobe Reader and Acrobat 10
ghsa_unreviewed·2022-05-17·CVSS 10.0
CVE-2015-3053 [CRITICAL] CWE-416 GHSA-wq8p-3q98-gw6h: Use-after-free vulnerability in Adobe Reader and Acrobat 10
Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-3054, CVE-2015-3055, CVE-2015-3059, and CVE-2015-3075.
No detection rules found.
No public exploits indexed.
Zscaler
Zscaler detects Flash Player Vulnerabilities | 05-21-2015
blogs_zscaler
Zscaler detects Flash Player Vulnerabilities | 05-21-2015
Provide users with seamless, secure, reliable access to applications and data.
Build and run secure cloud apps, enable zero trust cloud connectivity, and protect workloads from data center to cloud.
Provide zero trust connectivity for IoT and OT devices and secure remote access to OT systems.
Provide zero trust site-to-site connectivity and reliable access to B2B apps for partners.
Industry Report
Zscaler: A Leader in the 2025 Gartner® Magic Quadrant™ for Security Service Edge (SSE)
USE CASES
INDUSTRY & MARKET SOLUTIONS
PARTNERS
TECHNOLOGY PARTNERS
Resource Center
Events & Trainings
Security Research & Services
Tools
Community & Support
CXO REVOLUTIONARIES
Amplifying the voices of real-world digital and zero trust pioneers
Discover how it began and where it’s going
Meet o
Bugzilla
CVE-2015-9262 libxcursor: 1-byte heap-based overflow in _XcursorThemeInherits function in library.c
bugzilla·2018-08-02·CVSS 9.8
CVE-2015-9262 [CRITICAL] CVE-2015-9262 libxcursor: 1-byte heap-based overflow in _XcursorThemeInherits function in library.c
CVE-2015-9262 libxcursor: 1-byte heap-based overflow in _XcursorThemeInherits function in library.c
_XcursorThemeInherits in library.c in libXcursor before 1.1.15 allows remote attackers to cause denial of service or potentially code execution via a one-byte heap overflow.
Upstream bug:
https://bugs.freedesktop.org/show_bug.cgi?id=90857
Upstream patch:
https://cgit.freedesktop.org/xorg/lib/libXcursor/commit/?id=897213f36baf6926daf6d192c709cf627aa5fd05
Discussion:
Statement:
This issue affects the versions of libXcursor as shipped with Red Hat Enterprise Linux 5, 6, and 7.
---
This issue has been addressed in the following products:
Red Hat Enterprise Linux 7
Via RHSA-2018:3059 https://access.redhat.com/errata/RHSA-2018:3059
http://www.securityfocus.com/bid/74602http://www.securitytracker.com/id/1032284http://www.zerodayinitiative.com/advisories/ZDI-15-212https://helpx.adobe.com/security/products/reader/apsb15-10.htmlhttp://www.securityfocus.com/bid/74602http://www.securitytracker.com/id/1032284http://www.zerodayinitiative.com/advisories/ZDI-15-212https://helpx.adobe.com/security/products/reader/apsb15-10.html
2015-05-13
Published