Adobe Flash Player has an exploitable memory corruption vulnerability in the MP4 atom parser. Successful exploitation could lead to arbitrary code execution. This affects 26.0.0.151 and earlier.
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/144332/Adobe-Flash-appleToRange-Out-Of-Bounds-Read.html | Third Party Advisory VDB Entry |
http://www.securityfocus.com/bid/100716 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1039314 | Third Party Advisory VDB Entry |
https://access.redhat.com/errata/RHSA-2017:2702 | Third Party Advisory |
https://bugs.chromium.org/p/project-zero/issues/detail?id=1323 | Third Party Advisory |
https://helpx.adobe.com/security/products/flash-player/apsb17-28.html | Vendor Advisory |
https://security.gentoo.org/glsa/201709-16 | Third Party Advisory VDB Entry |
https://www.exploit-db.com/exploits/42783/ | Exploit Third Party Advisory VDB Entry |
https://www.youtube.com/watch?v=6iZnIQbRf5M | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
|
History
08 Sep 2021, 17:21
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:* |
Information
Published : 2017-12-01 08:29
Updated : 2024-02-04 19:29
NVD link : CVE-2017-11282
Mitre link : CVE-2017-11282
CVE.ORG link : CVE-2017-11282
JSON object : View
Products Affected
apple
- macos
microsoft
- windows
- windows_8.1
- windows_10
- chrome_os
redhat
- enterprise_linux_desktop
- enterprise_linux_workstation
- enterprise_linux_server
linux
- linux_kernel
adobe
- flash_player
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer