CVE-2017-2937
N/A
N/A
Summary
Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable use after free vulnerability in the ActionScript FileReference class, when using class inheritance. Successful exploitation could lead to arbitrary code execution.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Adobe Flash Player 24.0.0.186 and earlier. | Adobe Flash Player 24.0.0.186 and earlier. | affected |
Weaknesses
- Use After Free
ADP Enrichment
CVE Program Container
Additional References
- https://security.gentoo.org/glsa/201702-20
- http://www.securityfocus.com/bid/95342
- https://helpx.adobe.com/security/products/flash-player/apsb17-02.html
- http://rhn.redhat.com/errata/RHSA-2017-0057.html
- http://www.securitytracker.com/id/1037570
References
- https://security.gentoo.org/glsa/201702-20
- http://www.securityfocus.com/bid/95342
- https://helpx.adobe.com/security/products/flash-player/apsb17-02.html
- http://rhn.redhat.com/errata/RHSA-2017-0057.html
- http://www.securitytracker.com/id/1037570
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.