KLA11191
Multiple use-after-free vulnerabilities in Adobe Flash Player
Обновлено: 18/06/2020
Дата обнаружения
01/02/2018
Уровень угрозы
Critical
Описание

Multiple use-after-free vulnerabilitires was found in Adobe Flash Player. By exploiting these vulnerabilities malicious users can execute arbitrary code. These vulnerabilities can be exploited remotely via a specially crafted Office documents with embedded malicious Flash content.


Technical details

To update Adobe Flash Player ActiveX (detected as Flash.ocx) on Windows 8 and higher, install latest updates from Control Panel

Пораженные продукты

Adobe Flash Player earlier than 28.0.0.161

Решение

Update to the latest version
Download Adobe Flash Player

Первичный источник обнаружения
APSB18-03
APSA18-01
Оказываемое влияние
?
ACE 
[?]
Связанные продукты
Adobe Flash Player ActiveX
Adobe Flash Player NPAPI
Adobe Flash Player PPAPI
CVE-IDS
CVE-2018-48787.5Critical
CVE-2018-487710.0Critical
Эксплуатация

The following public exploits exists for this vulnerability:

https://www.exploit-db.com/exploits/44412

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.