Vulnerabilities Threats

English Russian Japanese LatAm Türkiye Brasil France Český Deutschland

KLA11307
Multiple vulnerabilities in Adobe Flash player
Updated: 06/18/2020
Detect date
?
 08/14/2018
Severity
?
 High
Description

Multiple serious vulnerabilities were found in Adobe Flash Player. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, gain privileges.

Below is a complete list of vulnerabilities:

  1. Multiple vulnerabilities in Adobe Flash Player can be exploited remotely via a specially designed SWF file to obtain sensitive information;
  2. An unspecified vulnerability in Adobe Flash Player can be exploited to bypass security restrictions;
  3. An unspecified vulnerability in Adobe Flash Player can be exploited to gain privileges.

Technical details

To update Adobe Flash Player ActiveX (detected as Flash.ocx) on Windows 8 and higher, install latest updates from Control Panel
Affected products

Adobe Flash Player earlier than 30.0.0.154
Solution

Update to the latest version
Flash Player Download Center
Original advisories

APSB18-25
Impacts
?
OSI 
[?]

SB 
[?]

PE 
[?]
Related products
 Adobe Flash Player ActiveX
Adobe Flash Player NPAPI
Adobe Flash Player PPAPI
CVE-IDS
?
CVE-2018-128245.9High
CVE-2018-128259.8Critical
CVE-2018-128267.5Critical
CVE-2018-128277.5Critical
CVE-2018-128289.8Critical
Exploitation

The following public exploits exists for this vulnerability:

https://www.exploit-db.com/exploits/45268

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
© 2020 AO Kaspersky Lab. All Rights Reserved.
Privacy Policy

Up