Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
zdiWillj from Tencent PC ManagerZDI-17-279
HistoryAug 01, 2017 - 12:00 a.m.

(Pwn2Own) Adobe Flash NetStream Use-After-Free Remote Code Execution Vulnerability

2017-08-0100:00:00
willj from Tencent PC Manager
www.zerodayinitiative.com
18

EPSS

0.029

Percentile

90.9%

JSON

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of NetStream objects. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code under the context of the current process.

Related

prion 1
nvd 1
checkpoint_advisories 1
cvelist 1
ubuntucve 1
cve 1
nessus 7
redhatcve 7
threatpost 1
mscve 1
mageia 1
kaspersky 1
gentoo 1
redhat 1
suse 1
openvas 8
trendmicroblog 1
prion
prion
Design/Logic Flaw
2017-04-12 14:59:00
nvd
nvd
CVE-2017-3063
2017-04-12 14:59:03
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Use After Free Code Execution (APSB17-10: CVE-2017-3063)
2017-04-12 00:00:00
cvelist
cvelist
CVE-2017-3063
2017-04-12 14:00:00
ubuntucve
ubuntucve
CVE-2017-3063
2017-04-12 00:00:00
cve
cve
CVE-2017-3063
2017-04-12 14:59:03
nessus
nessus
Flash Player < 25.0.0.148 Multiple RCE (APSB17-10)
2017-04-17 00:00:00
SUSE SLED12 Security Update : flash-player (SUSE-SU-2017:0990-1)
2017-04-13 00:00:00
Adobe Flash Player <= 25.0.0.127 Multiple Vulnerabilities (APSB17-10)
2017-04-11 00:00:00
redhatcve
redhatcve
CVE-2017-3063
2017-04-11 16:18:21
CVE-2017-3060
2017-04-11 16:18:27
CVE-2017-3064
2017-04-11 16:18:09
threatpost
threatpost
Adobe Patches 59 Vulnerabilities Across Flash, Reader, Photoshop
2017-04-11 14:58:55
mscve
mscve
April 2017 Adobe Flash Security Update
2017-04-11 07:00:00
mageia
mageia
Updated flash-player-plugin package fixes security vulnerability
2017-04-21 10:24:22
kaspersky
kaspersky
KLA10993 Arbitrary code execution vulnerabilities in Adobe Flash Player
2017-04-11 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2017-04-27 00:00:00
redhat
redhat
(RHSA-2017:0934) Critical: flash-plugin security update
2017-04-12 11:31:40
suse
suse
Security update for flash-player (important)
2017-04-12 18:12:20
openvas
openvas
Mageia: Security Advisory (MGASA-2017-0114)
2022-01-28 00:00:00
Adobe Flash Player Security Update (APSB17-10) - Linux
2017-04-12 00:00:00
Microsoft IE And Microsoft Edge Multiple Flash Player Vulnerabilities (4018483)
2017-04-12 00:00:00
trendmicroblog
trendmicroblog
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of April 17, 2017
2017-04-21 18:23:45

EPSS

0.029

Percentile

90.9%

JSON
Related for ZDI-17-279
prion1nvd1checkpoint_advisories1cvelist1ubuntucve1cve1nessus7redhatcve7threatpost1mscve1mageia1kaspersky1gentoo1redhat1suse1openvas8trendmicroblog1