Описание
An issue was discovered in Adobe Flash Player 27.0.0.183 and earlier versions. This vulnerability is an instance of a use after free vulnerability in the Primetime SDK metadata functionality. The mismatch between an old and a new object can provide an attacker with unintended memory access -- potentially leading to code corruption, control-flow hijack, or an information leak attack. Successful exploitation could lead to arbitrary code execution.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | released | 1:20171114.1-0ubuntu0.17.10.1 |
| devel | released | 1:20171114.1-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [1:20171114.1-0ubuntu0.14.04.1]] |
| precise/esm | DNE | |
| trusty | released | 1:20171114.1-0ubuntu0.14.04.1 |
| trusty/esm | DNE | trusty was released [1:20171114.1-0ubuntu0.14.04.1] |
| upstream | released | 27.0.0.187 |
| xenial | released | 1:20171114.1-0ubuntu0.16.04.1 |
| zesty | released | 1:20171114.1-0ubuntu0.17.04.1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | released | 27.0.0.187ubuntu0.17.10.1 |
| devel | released | 27.0.0.187ubuntu1 |
| esm-apps/xenial | released | 27.0.0.187ubuntu0.16.04.1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [27.0.0.187ubuntu0.14.04.1]] |
| precise/esm | DNE | |
| trusty | released | 27.0.0.187ubuntu0.14.04.1 |
| trusty/esm | DNE | trusty was released [27.0.0.187ubuntu0.14.04.1] |
| upstream | released | 27.0.0.187 |
| xenial | released | 27.0.0.187ubuntu0.16.04.1 |
| zesty | released | 27.0.0.187ubuntu0.17.04.1 |
Показывать по
Ссылки на источники
10 Critical
CVSS2
9.8 Critical
CVSS3
Связанные уязвимости
An issue was discovered in Adobe Flash Player 27.0.0.183 and earlier versions. This vulnerability is an instance of a use after free vulnerability in the Primetime SDK metadata functionality. The mismatch between an old and a new object can provide an attacker with unintended memory access -- potentially leading to code corruption, control-flow hijack, or an information leak attack. Successful exploitation could lead to arbitrary code execution.
An issue was discovered in Adobe Flash Player 27.0.0.183 and earlier versions. This vulnerability is an instance of a use after free vulnerability in the Primetime SDK metadata functionality. The mismatch between an old and a new object can provide an attacker with unintended memory access -- potentially leading to code corruption, control-flow hijack, or an information leak attack. Successful exploitation could lead to arbitrary code execution.
An issue was discovered in Adobe Flash Player 27.0.0.183 and earlier versions. This vulnerability is an instance of a use after free vulnerability in the Primetime SDK metadata functionality. The mismatch between an old and a new object can provide an attacker with unintended memory access -- potentially leading to code corruption, control-flow hijack, or an information leak attack. Successful exploitation could lead to arbitrary code execution.
Уязвимость компонента Primetime SDK программной платформы Flash Player, позволяющая нарушителю выполнить произвольный код
10 Critical
CVSS2
9.8 Critical
CVSS3