FILE-FLASH -- Snort has detected suspicious traffic via the Adobe Flash Player. Flash is a common target of code execution, overflow, DoS, and memory corruption attacks in particular, via swifs, action scripts, etc. Many networks block Flash altogether; the application will be deprecated in 2020.
FILE-FLASH Adobe Flash Player out-of-bounds read attempt
This alert occurs when an attacker attempts to exploit CVE-2019-7108.
Attempted User Privilege Gain
Ease of Attack:
What To Look For
No public information
No known false positives
MITRE ATT&CK Framework
For reference, see the MITRE ATT&CK vulnerability types here:
CVE Additional Information
CVE-2019-7108Adobe Flash Player versions 18.104.22.168 and earlier, 22.214.171.124 and earlier, and 126.96.36.199 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure .
||Ease of Access||LOW