virus logo Intrusion Prevention

Adobe.Flash.AVM.CVE-2018-15981.Type.Confusion

description-logoDescription

This indicates an attack attempt to exploit a Type Confusion vulnerability in Adobe Flash Player.
The vulnerability is due to an error when the vulnerable software handles a maliciously crafted SWF file. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application, via a crafted SWF file.

affected-products-logoAffected Products

Adobe Flash Player Desktop Runtime for Windows 31.0.0.148
Adobe Flash Player Desktop Runtime for Macintosh 31.0.0.148
Adobe Flash Player Desktop Runtime for Linux 31.0.0.148
Adobe Flash Player Google Chrome Plugin for Windows 31.0.0.148
Adobe Flash Player Google Chrome Plugin for Macintosh 31.0.0.148
Adobe Flash Player Google Chrome Plugin for Linux 31.0.0.148
Adobe Flash Player Google Chrome Plugin for ChromeOS 31.0.0.148
Adobe Flash Player Microsoft Edge and Internet Explorer 11 Plugin for Windows 10 and Windows 8.1 31.0.0.148

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://helpx.adobe.com/security/products/flash-player/apsb18-44.html

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2018-12-05 13.503 Default_action:pass:drop
2018-11-20 13.494

References

https://helpx.adobe.com/security/products/flash-player/apsb18-44.html
ID 47131
Created Nov 20, 2018
Updated May 02, 2022
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
CVE ID CVE-2018-15981
Exploit Prediction Score 27.45%
Default Action drop
Active
Affected OS Windows, Linux, MacOS
Affected App Adobe