Intrusion Prevention

Adobe.Flash.BitmapData.copyPixels.Memory.Corruption

Description

This indicates an attack attempt to exploit a Memory Corruption vulnerability in Adobe Flash Player.
The vulnerability is due to an error when the vulnerable software handles a maliciously crafted SWF file. A remote attacker may be able to exploit this to execute arbitrary code within the context of the affected application, via a crafted SWF file.

Affected Products

Adobe Flash Player Desktop Runtime 20.0.0.286 and earlier on Windows and Macintosh
Adobe Flash Player Extended Support Release 18.0.0.326 and earlier on Windows and Macintosh
Adobe Flash Player for Google Chrome 20.0.0.286 and earlier on Windows, Macintosh and Linux
Adobe Flash Player for Microsoft Edge and Internet Explorer 11 20.0.0.272 and earlier on Windows 10
Adobe Flash Player for Internet Explorer 10 and 11 20.0.0.272 and earlier on Windows 8.0 and 8.1
Adobe Flash Player for Linux 11.2.202.559 and earlier on Linux
AIR Desktop Runtime 20.0.0.233 and earlier on Windows and Macintosh
AIR SDK 20.0.0.233 and earlier on Windows, Macintosh, Android and iOS
AIR SDK & Compiler 20.0.0.233 and earlier on Windows, Macintosh, Android and iOS
Adobe Acrobat DC Continuous for Windows 2019.008.20081 and earlier versions
Adobe Acrobat DC Continuous for macOS 2019.008.20080 and earlier versions
Adobe Acrobat Reader DC Continuous for Windows 2019.008.20081 and earlier versions
Adobe Acrobat Reader DC Continuous for macOS 2019.008.20080 and earlier versions
Acrobat 2017 Classic 2017 for Windows 2017.011.30106 and earlier versions
Acrobat 2017 Classic 2017 for macOS 2017.011.30105 and earlier versions
Acrobat Reader DC 2017 Classic 2017 for Windows 2017.011.30106 and earlier versions
Acrobat Reader DC 2017 Classic 2017 for macOS 2017.011.30105 and earlier versions
Acrobat DC Classic 2015 for Windows 2015.006.30457 and earlier versions
Acrobat DC Classic 2015 for macOS 2015.006.30456 and earlier versions
Acrobat Reader DC Classic 2015 for Windows 20152015.006.30457 and earlier versions
Acrobat Reader DC Classic 2015 for macOS 2015.006.30456 and earlier versions

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

CVE References

CVE-2016-0968 CVE-2018-16030

Other References

APSB16-04 APSB18-41