← back
CVE-2017-2992

CVE-2017-2992

EPSS 32.8%
Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable heap overflow vulnerability when parsing an MP4 header. Successful exploitation could lead to arbitrary code execution.
Affected products
n/a · Adobe Flash Player 24.0.0.194 and earlier.
public PoCs found2
cve_referencewww.exploit-db.com/exploits/41420/unverifiedexploitdbwww.exploit-db.com/exploits/41420unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://rhn.redhat.com/errata/RHSA-2017-0275.htmlhttps://helpx.adobe.com/security/products/flash-player/apsb17-04.htmlhttps://security.gentoo.org/glsa/201702-20https://www.exploit-db.com/exploits/41420/http://www.securityfocus.com/bid/96193http://www.securitytracker.com/id/1037815