CVE-2015-7662

Vulnerability

Adobe Flash Player versions prior to 18.0.0.261, 19.x prior to 19.0.0.245 on Windows and OS X, and versions prior to 11.2.202.548 on Linux, along with Adobe AIR, AIR SDK, and AIR SDK & Compiler before 19.0.0.241, contain a vulnerability that allows remote attackers to bypass intended access restrictions and write to files via unspecified vectors [1], [2], [3]. The official description does not specify the exact code path or required configuration, but the flaw is addressed in the security updates referenced by the advisories [1], [2], [3].

Exploitation

An attacker can exploit this vulnerability remotely by crafting a malicious SWF file that, when loaded by a victim using a vulnerable version of Flash Player, triggers the file-write operation [1], [2], [3]. No authentication is required, and the user interaction is limited to visiting a page containing the malicious content. The vulnerability allows the attacker to write arbitrary files to the victim's system, bypassing security restrictions [1], [2], [3].

Impact

Successful exploitation enables an attacker to write arbitrary files to the file system of the victim's system, effectively bypassing the intended access restrictions [1], [2], [3]. This could lead to further compromise, such as writing malicious executables or modifying system files, depending on the privileges of the Flash Player process. The impact is rated as critical by Red Hat and other vendors [1], [2], [3].

Mitigation

Adobe released fixed versions: Flash Player 18.0.0.261, 19.0.0.245 for Windows/OS X, and 11.2.202.548 for Linux; AIR/AIR SDK/AIR SDK & Compiler updated to 19.0.0.241 [1], [2], [3]. Users should upgrade immediately. Red Hat provided updated packages for RHEL 5 Supplementary [2], and Gentoo issued a GLSA recommending upgrade to 11.2.202.548 [3]. No workarounds were disclosed [3].