CVE-2017-3106

Опубликовано: 08 авг. 2017

Источник: redhat

CVSS3: 8.8

Описание

Adobe Flash Player versions 26.0.0.137 and earlier have an exploitable type confusion vulnerability when parsing SWF files. Successful exploitation could lead to arbitrary code execution.

Ссылки на источники

Дополнительная информация

Статус:

Critical

Дефект:

CWE-843

https://bugzilla.redhat.com/show_bug.cgi?id=1479887flash-plugin: Remote Code Execution due to Type Confusion issue fixed in APSB17-23

8.8 High

CVSS3

Связанные уязвимости

CVE-2017-3106

CVSS3: 8.8

ubuntu

больше 8 лет назад

Adobe Flash Player versions 26.0.0.137 and earlier have an exploitable type confusion vulnerability when parsing SWF files. Successful exploitation could lead to arbitrary code execution.

CVE-2017-3106

CVSS3: 8.8

nvd

больше 8 лет назад

Adobe Flash Player versions 26.0.0.137 and earlier have an exploitable type confusion vulnerability when parsing SWF files. Successful exploitation could lead to arbitrary code execution.

GHSA-fvch-gj67-rr73

CVSS3: 8.8

github

больше 3 лет назад

Adobe Flash Player versions 26.0.0.137 and earlier have an exploitable type confusion vulnerability when parsing SWF files. Successful exploitation could lead to arbitrary code execution.

ADV170010

msrc

больше 8 лет назад

August 2017 Adobe Flash Security Update

8.8 High

CVSS3