CVE-2016-1001

CVE Database · CVE-2016-1001

CVE-2016-1001

· HIGHModified

CVSS v3.1

8.8

EPSS

26.23%

Published

Mar 12, 2016

Modified

May 6, 2026

Public PoC / Exploit (2)

All weaponized →

Exploit-DBAdobe Flash - Zlib Codec Heap Overflow TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Heap-based buffer overflow in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202.577 on Linux, Adobe AIR before 21.0.0.176, Adobe AIR SDK before 21.0.0.176, and Adobe AIR SDK & Compiler before 21.0.0.176 allows attackers to execute arbitrary code via unspecified vectors.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Weaknesses (CWE)

CWE-787

Affected Products (31)

adobe · flash_playervulnerable

apple · mac_os_x

google · chrome_os

linux · linux_kernel

microsoft · windows

adobe · airvulnerable

google · android