Lucene search

CVE-2017-3085

🗓️ 11 Aug 2017 19:02:29Reported by adobeType

cve🔗 web.nvd.nist.gov👁 61 Views🌐 3 Media mentions

Adobe Flash Player 26.0.0.137 security bypass vulnerabilit

Reporter	Title	Published	Views	Family All 36
Check Point Advisories	Adobe Flash Player Security Bypass (APSB17-23: CVE-2017-3085)	8 Aug 201700:00	–	checkpoint_advisories
Cvelist	CVE-2017-3085	11 Aug 201719:00	–	cvelist
Zero Day Initiative	Adobe Flash URL Redirect Information Disclosure Vulnerability	8 Aug 201700:00	–	zdi
ThreatPost	Patched Flash Player Sandbox Escape Leaked Windows Credentials	10 Aug 201715:00	–	threatpost
ThreatPost	Flash Player Marches Toward End, Patches Two Code Execution Bugs in Latest Update	8 Aug 201713:40	–	threatpost
Prion	Security feature bypass	11 Aug 201719:29	–	prion
NVD	CVE-2017-3085	11 Aug 201719:29	–	nvd
RedhatCVE	CVE-2017-3085	9 Aug 201716:49	–	redhatcve
UbuntuCve	CVE-2017-3085	11 Aug 201700:00	–	ubuntucve
CERT	Microsoft Windows NTLM automatically authenticates via SMB when following a file:// URL	13 Apr 201500:00	–	cert

Nvd

Vulners

Node

adobe flash_player_desktop_runtimeRange≤26.0.0.137

AND

apple mac_os_xMatch-

linux linux_kernelMatch-

microsoft windowsMatch-

Node

adobe flash_playerRange≤26.0.0.137edge

adobe flash_playerRange≤26.0.0.137internet_explorer

AND

microsoft windows_10Match-

microsoft windows_8.1Match-

Node

adobe flash_playerRange≤26.0.0.137chrome

AND

apple mac_os_xMatch-

google chrome_osMatch-

linux linux_kernelMatch-

microsoft windowsMatch-

Node

redhat enterprise_linuxMatch6.0

redhat enterprise_linux_desktopMatch6.0

redhat enterprise_linux_workstationMatch6.0

[
  {
    "product": "Flash Player",
    "vendor": "Adobe Systems Incorporated",
    "versions": [
      {
        "status": "affected",
        "version": "26.0.0.137 and earlier."
      }
    ]
  }
]

Source	Link
blog	www.blog.bjornweb.nl/2017/08/flash-remote-sandbox-escape-windows-user-credentials-leak/
zerodayinitiative	www.zerodayinitiative.com/advisories/ZDI-17-634/
access	www.access.redhat.com/errata/RHSA-2017:2457
securitytracker	www.securitytracker.com/id/1039088
security	www.security.gentoo.org/glsa/201709-16
helpx	www.helpx.adobe.com/security/products/flash-player/apsb17-23.html
securityfocus	www.securityfocus.com/bid/100191

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

11 Aug 2017 19:29Current

7.6High risk

Vulners AI Score7.6

CVSS24.3

CVSS37.4

EPSS0.009

CWE-601