Kaspersky Threats

Detect date

?

01/10/2017

Severity

?

Critical

Description

Multiple serious vulnerabilities have been found in Adobe Flash Player. Malicious users can exploit these vulnerabilities to bypass security restrictions, obtain sensitive information or execute arbitrary code.

Below is a complete list of vulnerabilities:

Vulnerability related to handling TCP connections can be exploited remotely to bypass security restrictions;
Use-after-free vulnerabilities in the ActionScript MovieClip and FileReference classes (when using class inheritance) can be exploited remotely to execute arbitrary code;
Heap buffer overflow vulnerabilities occuring while processing Adobe Texture Format files or Flash Video container file format can be exploited remotely to execute arbitrary code;
Heap buffer overflow vulnerability related to texture compression can be exploited remotely to execute arbitrary code;
Memory corruption vulnerability in the JPEG XR codec can be exploited remotely to execute arbitrary code;
Memory corruption vulnerabilities related to processing of atoms of MP4 files, setting visual mode effects and parsing metadata can be exploited remotely to execute arbitrary code;
Memory corruption vulnerability occuring while manipulating a display list because of a concurrency error can be exploited remotely to execute arbitrary code.

Technical details

To update Adobe Flash Player ActiveX (detected as Flash.ocx) on Windows 8 and higher, install latest updates from Control Panel

Affected products

Adobe Flash Player 24.0.0.186 and earlier
Adobe Flash Player for Google Chrome 24.0.0.186 and earlier

Solution

Update to the latest versions
Adobe Flash Player Distribution
Adobe Flash Player Download Center
Google Chrome Releases

Original advisories

Adobe Security Bulletin

Impacts

?

ACE

[?]

OSI

[?]

SB

[?]

Detect date ?	01/10/2017
Severity ?	Critical
Description	Multiple serious vulnerabilities have been found in Adobe Flash Player. Malicious users can exploit these vulnerabilities to bypass security restrictions, obtain sensitive information or execute arbitrary code. Below is a complete list of vulnerabilities: Vulnerability related to handling TCP connections can be exploited remotely to bypass security restrictions; Use-after-free vulnerabilities in the ActionScript MovieClip and FileReference classes (when using class inheritance) can be exploited remotely to execute arbitrary code; Heap buffer overflow vulnerabilities occuring while processing Adobe Texture Format files or Flash Video container file format can be exploited remotely to execute arbitrary code; Heap buffer overflow vulnerability related to texture compression can be exploited remotely to execute arbitrary code; Memory corruption vulnerability in the JPEG XR codec can be exploited remotely to execute arbitrary code; Memory corruption vulnerabilities related to processing of atoms of MP4 files, setting visual mode effects and parsing metadata can be exploited remotely to execute arbitrary code; Memory corruption vulnerability occuring while manipulating a display list because of a concurrency error can be exploited remotely to execute arbitrary code. Technical details To update Adobe Flash Player ActiveX (detected as Flash.ocx) on Windows 8 and higher, install latest updates from Control Panel
Affected products	Adobe Flash Player 24.0.0.186 and earlier Adobe Flash Player for Google Chrome 24.0.0.186 and earlier
Solution	Update to the latest versions Adobe Flash Player Distribution Adobe Flash Player Download Center Google Chrome Releases
Original advisories	Adobe Security Bulletin
Impacts ?	ACE [?] OSI [?] SB [?]
Related products	Adobe Flash Player ActiveX Adobe Flash Player NPAPI Macromedia Flash Player Adobe Flash Player PPAPI
CVE-IDS ?	CVE-2017-29387.5Critical
Exploitation	The following public exploits exists for this vulnerability: https://www.exploit-db.com/exploits/41012 https://www.exploit-db.com/exploits/41008 https://www.exploit-db.com/exploits/41608 https://www.exploit-db.com/exploits/41609 https://www.exploit-db.com/exploits/41610 https://www.exploit-db.com/exploits/41611 https://www.exploit-db.com/exploits/41612 Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
	Find out the statistics of the vulnerabilities spreading in your region

KLA10936Multiple vulnerabilities in Adobe Flash Player

KLA10936
Multiple vulnerabilities in Adobe Flash Player