ALT-PU-2017-1495-1 — adobe-flash-player-ppapi

BDU:2017-00964

CRITICAL10.0

Уязвимость программной платформы Flash Player, позволяющая нарушителю выполнить произвольный код

Published: 2017-04-24Modified: 2021-03-23

CVSS 2.0CRITICAL 10.0

CVSS:2.0/AV:N/AC:L/Au:N/C:C/I:C/A:C

References

BDU:2017-00965

CRITICAL10.0

Уязвимость программной платформы Flash Player, позволяющая нарушителю выполнить произвольный код

Published: 2017-04-24Modified: 2021-03-23

CVSS 2.0CRITICAL 10.0

CVSS:2.0/AV:N/AC:L/Au:N/C:C/I:C/A:C

References

BDU:2017-00966

CRITICAL10.0

Уязвимость программной платформы Flash Player, позволяющая нарушителю выполнить произвольный код

Published: 2017-04-24Modified: 2021-03-23

CVSS 2.0CRITICAL 10.0

CVSS:2.0/AV:N/AC:L/Au:N/C:C/I:C/A:C

References

BDU:2017-00967

CRITICAL10.0

Уязвимость программной платформы Flash Player, позволяющая нарушителю выполнить произвольный код

Published: 2017-04-24Modified: 2021-03-23

CVSS 2.0CRITICAL 10.0

CVSS:2.0/AV:N/AC:L/Au:N/C:C/I:C/A:C

References

BDU:2017-00968

CRITICAL10.0

Уязвимость программной платформы Flash Player, позволяющая нарушителю выполнить произвольный код

Published: 2017-04-24Modified: 2021-03-23

CVSS 2.0CRITICAL 10.0

CVSS:2.0/AV:N/AC:L/Au:N/C:C/I:C/A:C

References

BDU:2017-00974

CRITICAL9.3

Уязвимость программной платформы Flash Player, позволяющая нарушителю выполнить произвольный код

Published: 2017-04-27Modified: 2021-03-23

CVSS 2.0CRITICAL 9.3

CVSS:2.0/AV:N/AC:M/Au:N/C:C/I:C/A:C

References

BDU:2017-00975

CRITICAL9.3

Уязвимость программной платформы Flash Player, позволяющая нарушителю выполнить произвольный код

Published: 2017-04-27Modified: 2021-03-23

CVSS 2.0CRITICAL 9.3

CVSS:2.0/AV:N/AC:M/Au:N/C:C/I:C/A:C

References

CVE-2017-3058

HIGH7.8

Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable use after free vulnerability in the sound class. Successful exploitation could lead to arbitrary code execution.

Published: 2017-04-12Modified: 2025-04-20

CVSS 2.0CRITICAL 9.3

CVSS:2.0/AV:N/AC:M/Au:N/C:C/I:C/A:C

CVSS 3.xHIGH 7.8

CVSS:3.x/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References

CVE-2017-3059

CRITICAL9.8

Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable use after free vulnerability in the internal script object. Successful exploitation could lead to arbitrary code execution.

Published: 2017-04-12Modified: 2025-04-20

CVSS 2.0CRITICAL 10.0

CVSS:2.0/AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS 3.xCRITICAL 9.8

CVSS:3.x/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References

CVE-2017-3060

CRITICAL9.8

Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable memory corruption vulnerability in the ActionScript2 code parser. Successful exploitation could lead to arbitrary code execution.

Published: 2017-04-12Modified: 2025-04-20

CVSS 2.0CRITICAL 10.0

CVSS:2.0/AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS 3.xCRITICAL 9.8

CVSS:3.x/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References

CVE-2017-3061

CRITICAL9.8

Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable memory corruption vulnerability in the SWF parser. Successful exploitation could lead to arbitrary code execution.

Published: 2017-04-12Modified: 2025-04-20

CVSS 2.0CRITICAL 10.0

CVSS:2.0/AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS 3.xCRITICAL 9.8

CVSS:3.x/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References

CVE-2017-3062

CRITICAL9.8

Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable use after free vulnerability in ActionScript2 when creating a getter/setter property. Successful exploitation could lead to arbitrary code execution.

Published: 2017-04-12Modified: 2025-04-20

CVSS 2.0CRITICAL 10.0

CVSS:2.0/AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS 3.xCRITICAL 9.8

CVSS:3.x/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References

CVE-2017-3063

CRITICAL9.8

Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable use after free vulnerability in the ActionScript2 NetStream class. Successful exploitation could lead to arbitrary code execution.

Published: 2017-04-12Modified: 2025-04-20

CVSS 2.0CRITICAL 10.0

CVSS:2.0/AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS 3.xCRITICAL 9.8

CVSS:3.x/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References

CVE-2017-3064

HIGH7.8

Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable memory corruption vulnerability when parsing a shape outline. Successful exploitation could lead to arbitrary code execution.

Published: 2017-04-12Modified: 2025-04-20

CVSS 2.0CRITICAL 9.3

CVSS:2.0/AV:N/AC:M/Au:N/C:C/I:C/A:C

CVSS 3.xHIGH 7.8

CVSS:3.x/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References

Package update adobe-flash-player-ppapi in branch sisyphus

Closed issues (14)

Уязвимость программной платформы Flash Player, позволяющая нарушителю выполнить произвольный код

Уязвимость программной платформы Flash Player, позволяющая нарушителю выполнить произвольный код

Уязвимость программной платформы Flash Player, позволяющая нарушителю выполнить произвольный код

Уязвимость программной платформы Flash Player, позволяющая нарушителю выполнить произвольный код

Уязвимость программной платформы Flash Player, позволяющая нарушителю выполнить произвольный код

Уязвимость программной платформы Flash Player, позволяющая нарушителю выполнить произвольный код

Уязвимость программной платформы Flash Player, позволяющая нарушителю выполнить произвольный код

Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable use after free vulnerability in the sound class. Successful exploitation could lead to arbitrary code execution.

Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable use after free vulnerability in the internal script object. Successful exploitation could lead to arbitrary code execution.

Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable memory corruption vulnerability in the ActionScript2 code parser. Successful exploitation could lead to arbitrary code execution.

Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable memory corruption vulnerability in the SWF parser. Successful exploitation could lead to arbitrary code execution.

Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable use after free vulnerability in ActionScript2 when creating a getter/setter property. Successful exploitation could lead to arbitrary code execution.

Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable use after free vulnerability in the ActionScript2 NetStream class. Successful exploitation could lead to arbitrary code execution.

Adobe Flash Player versions 25.0.0.127 and earlier have an exploitable memory corruption vulnerability when parsing a shape outline. Successful exploitation could lead to arbitrary code execution.