CVE-2017-3076

Опубликовано: 20 июн. 2017

Источник: ubuntu

Приоритет: medium

EPSS Средний

CVSS2: 10

CVSS3: 9.8

Описание

Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable memory corruption vulnerability in the MPEG-4 AVC module. Successful exploitation could lead to arbitrary code execution.

Релиз	Статус	Примечание
devel	released	1:20170613.2-0ubuntu1
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was released [1:20170613.2-0ubuntu0.14.04.1]]
precise/esm	DNE
trusty	released	1:20170613.2-0ubuntu0.14.04.1
trusty/esm	DNE	trusty was released [1:20170613.2-0ubuntu0.14.04.1]
upstream	needs-triage
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
xenial	released	1:20170613.2-0ubuntu0.16.04.1
yakkety	released	1:20170613.2-0ubuntu0.16.10.1

Показывать по

Релиз	Статус	Примечание
devel	released	26.0.0.126ubuntu1
esm-apps/xenial	released	26.0.0.126ubuntu0.16.04.1
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was released [26.0.0.126ubuntu0.14.04.1]]
precise/esm	DNE
trusty	released	26.0.0.126ubuntu0.14.04.1
trusty/esm	DNE	trusty was released [26.0.0.126ubuntu0.14.04.1]
upstream	released	26.0.0.126
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
xenial	released	26.0.0.126ubuntu0.16.04.1

Показывать по

Ссылки на источники

EPSS

Процентиль: 98%

0.53858

Средний

10 Critical

CVSS2

9.8 Critical

CVSS3

Связанные уязвимости

CVE-2017-3076

CVSS3: 8.8

redhat

больше 8 лет назад

Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable memory corruption vulnerability in the MPEG-4 AVC module. Successful exploitation could lead to arbitrary code execution.

CVE-2017-3076

CVSS3: 9.8

nvd

больше 8 лет назад

Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable memory corruption vulnerability in the MPEG-4 AVC module. Successful exploitation could lead to arbitrary code execution.

GHSA-vfh6-rm76-vxx7

CVSS3: 9.8

github

больше 3 лет назад

Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable memory corruption vulnerability in the MPEG-4 AVC module. Successful exploitation could lead to arbitrary code execution.

BDU:2017-01582

fstec

больше 8 лет назад

Уязвимость модуля MPEG-4 AVC программной платформы Flash Player, позволяющая нарушителю выполнить произвольный код

ADV170007

msrc

больше 8 лет назад

June 2017 Adobe Flash Security Update

EPSS

Процентиль: 98%

0.53858

Средний

10 Critical

CVSS2

9.8 Critical

CVSS3

CVE-2017-3076

Описание

Пакет adobe-flashplugin

Пакет flashplugin-nonfree

Ссылки на источники

Связанные уязвимости