Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable heap overflow vulnerability when parsing an MP4 header. Successful exploitation could lead to arbitrary code execution.

References

bugzilla.redhat.com/show_bug.cgi?id=1422237

helpx.adobe.com/security/products/flash-player/apsb17-04.html

redhatcve 11

mscve 1

nessus 9

altlinux 1

openvas 8

mageia 1

archlinux 2

kaspersky 1

redhat 1

suse 1

gentoo 1

seebug 2

cvelist 12

ubuntucve 12

cve 12

checkpoint_advisories 12

prion 12

nvd 12

exploitdb 4

zdt 4

symantec 1

zdi 1

redhatcve

CVE-2017-2986

2017-02-14 20:18:35

CVE-2017-2985

2017-02-14 20:18:55

CVE-2017-2991

2017-02-14 20:19:26

mscve

February 2017 Adobe Flash Security Update

2017-02-21 08:00:00

nessus

MS17-005: Security Update for Adobe Flash Player (4010250)

2017-02-22 00:00:00

Flash Player < 24.0.0.221 Multiple Vulnerabilities (APSB17-04)

2017-02-16 00:00:00

Adobe Flash Player <= 24.0.0.194 Multiple Vulnerabilities (APSB17-04)

2017-02-14 00:00:00

altlinux

Security fix for the ALT Linux 7 package adobe-flash-player version 3:24-alt0.M70P.3

2017-02-17 00:00:00

openvas

Adobe Flash Player Within Google Chrome Security Update (APSB17-04) - Windows

2017-03-14 00:00:00

Adobe Flash Player Within Google Chrome Security Update (APSB17-04) - Linux

2017-03-14 00:00:00

Microsoft IE And Microsoft Edge Multiple Flash Player Vulnerabilities (4010250)

2017-03-09 00:00:00

mageia

Updated flash-player-plugin packages fix security vulnerability

2017-03-12 23:33:36

archlinux

[ASA-201702-15] flashplugin: arbitrary code execution

2017-02-17 00:00:00

[ASA-201702-16] lib32-flashplugin: arbitrary code execution

2017-02-17 00:00:00

kaspersky

KLA10960 Code execution vulnerabilities in Adobe Flash Player

2017-02-14 00:00:00

redhat

(RHSA-2017:0275) Critical: flash-plugin security update

2017-02-15 10:29:10

suse

Security update for flash-player (important)

2017-02-20 18:09:26

gentoo

Adobe Flash Player: Multiple vulnerabilities

2017-02-20 00:00:00

seebug

Adobe Flash: Heap Overflow in YUVPlane decoding (CVE-2017-2986)

2017-02-23 00:00:00

Adobe Flash: Use-after-free in applying bitmapfilter (CVE-2017-2985)

2017-02-23 00:00:00

cvelist

CVE-2017-2986

2017-02-15 06:11:00

CVE-2017-2984

2017-02-15 06:11:00

CVE-2017-2990

2017-02-15 06:11:00

ubuntucve

CVE-2017-2984

2017-02-15 00:00:00

CVE-2017-2991

2017-02-15 00:00:00

CVE-2017-2986

2017-02-15 00:00:00

cve

CVE-2017-2984

2017-02-15 06:59:00

CVE-2017-2986

2017-02-15 06:59:00

CVE-2017-2993

2017-02-15 06:59:00

checkpoint_advisories

Adobe Flash Player Memory Corruption (APSB17-04: CVE-2017-2991)

2017-02-14 00:00:00

Adobe Flash Player Heap Buffer Overflow (APSB17-04: CVE-2017-2984)

2017-02-14 00:00:00

Adobe Flash Player Heap Buffer Overflow (APSB17-04: CVE-2017-2986)

2017-02-14 00:00:00

prion

Heap overflow

2017-02-15 06:59:00

Heap overflow

2017-02-15 06:59:00

Type confusion

2017-02-15 06:59:00

nvd

CVE-2017-2984

2017-02-15 06:59:00

CVE-2017-2986

2017-02-15 06:59:00

CVE-2017-2991

2017-02-15 06:59:00

exploitdb

Adobe Flash - YUVPlane Decoding Heap Overflow

2017-02-21 00:00:00

Adobe Flash - Use-After-Free in Applying Bitmap Filter

2017-02-21 00:00:00

Adobe Flash - SWF Stack Corruption

2017-02-21 00:00:00

zdt

Adobe Flash - YUVPlane Decoding Heap Overflow Exploit

2017-02-22 00:00:00

Adobe Flash - Use-After-Free in Applying Bitmap Filter Exploit

2017-02-22 00:00:00

Adobe Flash - MP4 AMF Parsing Overflow Exploit

2017-02-22 00:00:00

symantec

Adobe Flash Player CVE-2017-2995 Type Confusion Remote Code Execution Vulnerability

2017-02-14 00:00:00

zdi

Adobe Flash Player MessageChannel Type Confusion Remote Code Execution Vulnerability

2017-02-14 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

EPSS

0.94

Percentile

99.2%

JSON

Related for RH:CVE-2017-2992