CVE-2017-2935

EPSS 30.1%

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable heap overflow vulnerability when processing the Flash Video container file format. Successful exploitation could lead to arbitrary code execution.

Affected products

n/a · Adobe Flash Player 24.0.0.186 and earlier.

public PoCs found — 2

cve_referencewww.exploit-db.com/exploits/41612/unverified exploitdbwww.exploit-db.com/exploits/41612unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://rhn.redhat.com/errata/RHSA-2017-0057.html https://helpx.adobe.com/security/products/flash-player/apsb17-02.html https://security.gentoo.org/glsa/201702-20 https://www.exploit-db.com/exploits/41612/http://www.securityfocus.com/bid/95347 http://www.securitytracker.com/id/1037570