NVD disclosure day
CVE-2015-3043
Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.
A memory corruption flaw in Adobe Flash Player allows attackers to execute arbitrary code or cause denial of service. This affects systems where Flash Player is installed and users interact with malicious content. The business risk includes potential system and data compromise.
CVE-2015-1641
Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.
Microsoft Office products are affected by a flaw that allows remote attackers to execute arbitrary code through crafted RTF documents. This could lead to unauthorized code execution on affected systems, posing a business risk through potential data compromise and operational disruption.
CVE-2015-1635
Halo Surface Signal: 5 out of 5 — more likely to be public-facing.
A vulnerability in Microsoft's HTTP.sys component allows remote attackers to execute arbitrary code via crafted HTTP requests. This impacts Windows systems, potentially leading to unauthorized access and control of affected systems. The business risk includes data breaches and service disruptions.