Trusted Design

• 重大度: Unknown
• 公開日: 2013-02-08
• 更新日: 2024-08-06

概要

Adobe Flash Player before 10.3.183.51 and 11.x before 11.5.502.149 on Windows and Mac OS X, before 10.3.183.51 and 11.x before 11.2.202.262 on Linux, before 11.1.111.32 on Android 2.x and 3.x, and before 11.1.115.37 on Android 4.x allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted SWF content, as exploited in the wild in February 2013.

このCVEに関連するMITRE ATT&CKテクニック

• T1171 - LLMNR/NBT-NS Poisoning and Relay
• T1583.002 - DNS Server
• T1121 - Regsvcs/Regasm
• T1652 - Device Driver Discovery
• T1484.002 - Trust Modification
• T1213.006 - Databases
• T1586.001 - Social Media Accounts
• T1070.002 - Clear Linux or Mac System Logs
• T1598.003 - Spearphishing Link
• T1583.005 - Botnet
• T1040 - Network Sniffing
• T1071 - Application Layer Protocol
• T1190 - Exploit Public-Facing Application
• T1558 - Steal or Forge Kerberos Tickets
• T1050 - New Service
• T1518.002 - Backup Software Discovery
• T1525 - Implant Internal Image
• T1181 - Extra Window Memory Injection
• T1145 - Private Keys
• T1155 - AppleScript
• T1563 - Remote Service Session Hijacking
• T1681 - Search Threat Vendor Data
• T1179 - Hooking
• T1042 - Change Default File Association
• T1055.013 - Process Doppelgänging
• T1546.008 - Accessibility Features
• T1649 - Steal or Forge Authentication Certificates
• T1051 - Shared Webroot
• T1218.005 - Mshta
• T1608.005 - Link Target
• T1497.002 - User Activity Based Checks
• T1606 - Forge Web Credentials
• T1071.002 - File Transfer Protocols
• T1534 - Internal Spearphishing
• T1110 - Brute Force
• T1562.001 - Disable or Modify Tools
• T1584.006 - Web Services
• T1531 - Account Access Removal
• T1110.004 - Credential Stuffing
• T1486 - Data Encrypted for Impact
• T1587.004 - Exploits
• T1589.001 - Credentials
• T1036.003 - Rename Legitimate Utilities
• T1137.004 - Outlook Home Page
• T1184 - SSH Hijacking
• T1499 - Endpoint Denial of Service
• T1027.004 - Compile After Delivery
• T1213.003 - Code Repositories
• T1565.002 - Transmitted Data Manipulation
• T1070.009 - Clear Persistence
• T1159 - Launch Agent
• T1538 - Cloud Service Dashboard
• T1055.008 - Ptrace System Calls
• T1653 - Power Settings
• T1173 - Dynamic Data Exchange
• T1566.003 - Spearphishing via Service

このCVEが関連しているPulses

このCVEが関連しているPulsesはありません。

CVEの関係性グラフ

---

← CVE一覧に戻る