KLA11085
Multiple vulnerabilities in Adobe Flash Player

Updated: 06/18/2020

Detect date ?	08/08/2017
Severity ?	Critical
Description	Multiple serious vulnerabilities have been found in Adobe Flash Player versions earlier than 26.0.0.151. Malicious users can exploit these vulnerabilities to obtain sensitive information and execute arbitrary code. Below is a complete list of vulnerabilities: Security bypass vulnerability related to performing URL redirect can be exploited remotely to obtain sensitive information; Type confusion vulnerability which occurs while parsing SWF files can be exploited remotely to execute arbitrary code. Technical details To update Adobe Flash Player ActiveX (detected as Flash.ocx) on Windows 8 and higher, install latest updates from Control Panel
Affected products	Adobe Flash Player versions earlier than 26.0.0.151
Solution	Update to the latest versions Download Adobe Flash Player
Original advisories	Adobe Security Bulletin
Impacts ?	ACE [?] OSI [?]
Related products	Adobe Flash Player ActiveX Adobe Flash Player NPAPI Adobe Flash Player PPAPI
CVE-IDS ?	CVE-2017-30855.0Critical CVE-2017-31069.3Critical
Exploitation	The following public exploits exists for this vulnerability: https://www.exploit-db.com/exploits/42480 Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

KLA11085Multiple vulnerabilities in Adobe Flash Player