Multiple use-after-free vulnerabilities in Adobe Flash Player

Описание

Multiple use-after-free vulnerabilitires was found in Adobe Flash Player. By exploiting these vulnerabilities malicious users can execute arbitrary code. These vulnerabilities can be exploited remotely via a specially crafted Office documents with embedded malicious Flash content.

---

Technical details

To update Adobe Flash Player ActiveX (detected as Flash.ocx) on Windows 8 and higher, install latest updates from Control Panel

Первичный источник обнаружения

• APSB18-03
  APSA18-01
  

Эксплуатация

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Связанные продукты

• Adobe-Flash-Player-ActiveX
• Adobe-Flash-Player-NPAPI
• Adobe-Flash-Player-PPAPI

Список CVE

• CVE-2018-4878
  critical
• CVE-2018-4877
  critical

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com