vulnerability

FreeBSD: VID-52F10525-CAFF-11E7-B590-6451062F0F7A (CVE-2017-3112): Flash Player -- multiple vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
10	(AV:N/AC:L/Au:N/C:C/I:C/A:C)	2017-11-14	2017-11-16	2019-05-03

Severity

CVSS

(AV:N/AC:L/Au:N/C:C/I:C/A:C)

Published

2017-11-14

Added

2017-11-16

Modified

2019-05-03

Description

An issue was discovered in Adobe Flash Player 27.0.0.183 and earlier versions. This vulnerability occurs as a result of a computation that reads data that is past the end of the target buffer; the computation is part of AdobePSDK metadata. The use of an invalid (out-of-range) pointer offset during access of internal data structure fields causes the vulnerability. A successful attack can lead to sensitive data exposure.

Solution

freebsd-upgrade-package-linux-flashplayer

References

BID-101837
SECTRACK-1039778
REDHAT-RHSA-2017:3222
GENTOO-GLSA-201711-13
NVD-CVE-2017-3112

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today