Adobe Flash Player Remote Command Execution

$32,000.00

Products Infected:

Product Version Platform
Adobe Flash Player Desktop Runtime 32.0.0.156 and earlier Windows, macOS and Linux
Adobe Flash Player for Google Chrome 32.0.0.156 and earlier Windows, macOS, Linux and Chrome OS
Adobe Flash Player for Microsoft Edge and Internet Explorer 11 32.0.0.156 and earlier Windows 10 and 8.1

We are based our prices under “Zerodium” program by discount 40% of the original price low price then expected for Gold-Clients

https://zerodium.com/images/zerodium_prices.png

Category:

Description

Proof of concept the vulnerability described:

Vulnerability Details:

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Adobe Flash Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file SWF.

The specific flaw exists within the processing of image filters. By performing actions in ActionScript, an attacker can trigger a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute code in the context of the current process.

X