Adobe has issued an out-of-band advisory for CVE-2018-15982. Through the use of a maliciously crafted RAR file, an attacker exploiting this vulnerability can take over the machine of users that run it.

Adobe Flash Vulnerability Can Lead to Code Execution and Asset Takeover (CVE-2018-15982)

Flash Player versions 31.0.0.153 and earlier, and 31.0.0.108 and earlier have a use after free vulnerability. Successful exploitation could lead to arbitrary code execution.

The remote Redhat Enterprise Linux 6 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2018:3795 advisory.

    The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in.

    This update upgrades Flash Player to version 32.0.0.101.

    Security Fix(es):

    * flash-plugin: ArbitraryCode Execution vulnerability (APSB18-42) (CVE-2018-15982)

    For more details about the security issue(s), including the impact, a CVSS score, and other related     information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Adobe reports :

- This update resolves a use-after-free vulnerability that could lead to arbitrary code execution (CVE-2018-15982).

- This update resolves an insecure library loading vulnerability that could lead to privilege escalation (CVE-2018-15983).

The remote Windows host is missing security update KB4471331. It is, therefore, affected by the following vulnerabilities :

  - An unspecified use-after-free error exists that allows     remote code execution. (CVE-2018-15982)

  - An unspecified insecure library loading error exists     that allows privilege escalation. (CVE-2018-15983)

The version of Adobe Flash Player installed on the remote Windows host is equal or prior to version 31.0.0.153. It is therefore affected by the following vulnerabilities :

  - An unspecified use-after-free error exists that allows     remote code execution. (CVE-2018-15982)

  - An unspecified insecure library loading error exists     that allows privilege escalation. (CVE-2018-15983)

The version of Adobe Flash Player installed on the remote macOS or Mac OS X host is equal or prior to version 31.0.0.153.
It is therefore affected by the following vulnerabilities :

  - An unspecified use-after-free error exists that allows     remote code execution. (CVE-2018-15982)

  - An unspecified insecure library loading error exists     that allows privilege escalation. (CVE-2018-15983)

Versions of Adobe Flash Player prior to 32.0.0.101 are unpatched, and therefore affected by the following RCE vulnerabilities :

 - An unspecified use-after-free error exists that allows remote code execution. (CVE-2018-15982)
 - An unspecified insecure library loading error exists that allows privilege escalation. (CVE-2018-15983)

ID	Name	Product	Family	Severity
119489	RHEL 6 : flash-plugin (RHSA-2018:3795)	Nessus	Red Hat Local Security Checks	high
119481	FreeBSD : Flash Player -- multiple vulnerabilities (49cbe200-f92a-11e8-a89d-d43d7ef03aa6)	Nessus	FreeBSD Local Security Checks	high
119463	KB4471331: Security update for Adobe Flash Player (December 2018)	Nessus	Windows : Microsoft Bulletins	high
119462	Adobe Flash Player <= 31.0.0.153 (APSB18-42)	Nessus	Windows	high
119424	Adobe Flash Player for Mac <= 31.0.0.153 (APSB18-42)	Nessus	MacOS X Local Security Checks	high
700375	Adobe Flash Player < 32.0.0.101 Multiple RCE (APSB18-42)	Nessus Network Monitor	Web Clients	high

Detections

Analytics

CVE-2018-15982

high

Tenable Plugins

high

high

high

high

high

high