Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA10960
HistoryFeb 14, 2017 - 12:00 a.m.

KLA10960 Code execution vulnerabilities in Adobe Flash Player

2017-02-1400:00:00
Kaspersky Lab
threats.kaspersky.com
77

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

9.9 High

AI Score

Confidence

High

0.945 High

EPSS

Percentile

99.2%

JSON

Multiple serious vulnerabilities have been found in Adobe Flash Player. Malicious users can exploit these vulnerabilities to execute arbitrary code.

Below is a complete list of vulnerabilities:

  1. A type confusion vulnerability related to the MessageChannel class can be exploited remotely to execute arbitrary code;
  2. An integer overflow vulnerability related to Flash Broker COM can be exploited remotely to execute arbitrary code;
  3. Use-after-free vulnerabilities can be exploited remotely to execute arbitrary code;
  4. Heap buffer overflow vulnerabilities can be exploited remotely to execute arbitrary code;
  5. Memory corruption vulnerabilities can be exploited remotely to execute arbitrary code.

Technical details

Vulnerabilities (3) occur in a routine related to player shutdown, in the ActionScript 3 BitmapData class, in Primetime SDK event dispatch or might be related to event handlers.

Vulnerabilities (4) occur in the h264 decoder routine, in the Flash Video (FLV) codec and while parsing an MP4 header.

Vulnerabilities (5) occur while performing garbage collection, in the h264 codec (related to decompression) and in Primetime SDK.
To update Adobe Flash Player ActiveX (detected as Flash.ocx) on Windows 8 and higher, install latest updates from Control Panel

Original advisories

Adobe Security Bulletin

Exploitation

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Related products

Adobe-Flash-Player-ActiveX

Adobe-Flash-Player-NPAPI

Adobe-Flash-Player-PPAPI

CVE list

CVE-2017-2982 critical

CVE-2017-2984 critical

CVE-2017-2985 critical

CVE-2017-2986 critical

CVE-2017-2987 critical

CVE-2017-2988 critical

CVE-2017-2990 critical

CVE-2017-2991 critical

CVE-2017-2992 critical

CVE-2017-2993 critical

CVE-2017-2994 critical

CVE-2017-2995 critical

CVE-2017-2996 critical

Solution

Update to the latest versions

Adobe Flash Player Download Center

Impacts

  • ACE

Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.

  • OSI

Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.

  • SB

Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.

Affected Products

  • Adobe Flash Player versions earlier thanΒ 24.0.0.221

Related

redhat 2
openvas 8
suse 1
nessus 10
redhatcve 20
altlinux 1
mscve 1
archlinux 2
mageia 1
gentoo 1
seebug 2
cvelist 13
zdi 3
prion 13
cve 13
checkpoint_advisories 13
ubuntucve 13
nvd 13
zdt 4
symantec 1
redhat
redhat
(RHSA-2017:0275) Critical: flash-plugin security update
2017-02-15 10:29:10
(RHSA-2017:0526) Critical: flash-plugin security update
2017-03-15 12:06:09
openvas
openvas
Adobe Flash Player Security Update (APSB17-04) - Linux
2017-02-15 00:00:00
Mageia: Security Advisory (MGASA-2017-0075)
2022-01-28 00:00:00
Microsoft IE And Microsoft Edge Multiple Flash Player Vulnerabilities (4010250)
2017-03-09 00:00:00
suse
suse
Security update for flash-player (important)
2017-02-20 18:09:26
nessus
nessus
SUSE SLED12 Security Update : flash-player (SUSE-SU-2017:0523-1)
2017-02-21 00:00:00
Adobe Flash Player <= 24.0.0.194 Multiple Vulnerabilities (APSB17-04)
2017-02-14 00:00:00
Adobe Flash Player for Mac <= 24.0.0.194 Multiple Vulnerabilities (APSB17-04)
2017-02-14 00:00:00
redhatcve
redhatcve
CVE-2017-2995
2017-02-14 20:18:14
CVE-2017-2988
2017-02-14 20:19:33
CVE-2017-2984
2017-02-14 20:18:47
altlinux
altlinux
Security fix for the ALT Linux 7 package adobe-flash-player version 3:24-alt0.M70P.3
2017-02-17 00:00:00
mscve
mscve
February 2017 Adobe Flash Security Update
2017-02-21 08:00:00
archlinux
archlinux
[ASA-201702-16] lib32-flashplugin: arbitrary code execution
2017-02-17 00:00:00
[ASA-201702-15] flashplugin: arbitrary code execution
2017-02-17 00:00:00
mageia
mageia
Updated flash-player-plugin packages fix security vulnerability
2017-03-12 23:33:36
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2017-02-20 00:00:00
seebug
seebug
Adobe Flash: Heap Overflow in YUVPlane decoding (CVE-2017-2986)
2017-02-23 00:00:00
Adobe Flash: Use-after-free in applying bitmapfilter (CVE-2017-2985)
2017-02-23 00:00:00
cvelist
cvelist
CVE-2017-2986
2017-02-15 06:11:00
CVE-2017-2994
2017-02-15 06:11:00
CVE-2017-2993
2017-02-15 06:11:00
zdi
zdi
Adobe Flash PSDKEvent Use-After-Free Remote Code Execution Vulnerability
2017-04-19 00:00:00
Adobe Flash Player MediaPlayer Out-Of-Bounds Access Remote Code Execution Vulnerability
2017-02-14 00:00:00
Adobe Flash Player MessageChannel Type Confusion Remote Code Execution Vulnerability
2017-02-14 00:00:00
prion
prion
Design/Logic Flaw
2017-02-15 06:59:00
Heap overflow
2017-02-15 06:59:00
Memory corruption
2017-02-15 06:59:00
cve
cve
CVE-2017-2994
2017-02-15 06:59:00
CVE-2017-2986
2017-02-15 06:59:00
CVE-2017-2996
2017-02-15 06:59:00
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Use After Free Code Execution (APSB17-04: CVE-2017-2994)
2017-02-14 00:00:00
Adobe Flash Player Memory Corruption (APSB17-04: CVE-2017-2991)
2017-02-14 00:00:00
Adobe Flash Player Heap Buffer Overflow (APSB17-04: CVE-2017-2984)
2017-02-14 00:00:00
ubuntucve
ubuntucve
CVE-2017-2994
2017-02-15 00:00:00
CVE-2017-2991
2017-02-15 00:00:00
CVE-2017-2986
2017-02-15 00:00:00
nvd
nvd
CVE-2017-2994
2017-02-15 06:59:00
CVE-2017-2991
2017-02-15 06:59:00
CVE-2017-2986
2017-02-15 06:59:00
zdt
zdt
Adobe Flash - YUVPlane Decoding Heap Overflow Exploit
2017-02-22 00:00:00
Adobe Flash - Use-After-Free in Applying Bitmap Filter Exploit
2017-02-22 00:00:00
Adobe Flash - MP4 AMF Parsing Overflow Exploit
2017-02-22 00:00:00
symantec
symantec
Adobe Flash Player CVE-2017-2995 Type Confusion Remote Code Execution Vulnerability
2017-02-14 00:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

9.9 High

AI Score

Confidence

High

0.945 High

EPSS

Percentile

99.2%

JSON
Related for KLA10960
redhat2openvas8suse1nessus10redhatcve20altlinux1mscve1archlinux2mageia1gentoo1seebug2cvelist13zdi3prion13cve13checkpoint_advisories13ubuntucve13nvd13zdt4symantec1