AVG-492

Package flashplugin
Status Fixed
Severity Critical
Type arbitrary code execution
Affected 27.0.0.183-1
Fixed 27.0.0.187-1
Current 32.0.0.114-1 [extra]
Ticket None
Created Wed Nov 15 11:49:04 2017
Issue Severity Remote Type Description
CVE-2017-3114 Critical Yes Arbitrary code execution
An out-of-bounds access vulnerability has been discovered in flashplugin before 27.0.0.187 leading to arbitrary code execution when playing a specially...
CVE-2017-3112 Critical Yes Arbitrary code execution
An out-of-bounds access vulnerability has been discovered in flashplugin before 27.0.0.187 leading to arbitrary code execution when playing a specially...
CVE-2017-11225 Critical Yes Arbitrary code execution
An use after free vulnerability has been discovered in flashplugin before 27.0.0.187 leading to arbitrary code execution when playing a specially crafted SWF file.
CVE-2017-11215 Critical Yes Arbitrary code execution
An use after free vulnerability has been discovered in flashplugin before 27.0.0.187 leading to arbitrary code execution when playing a specially crafted SWF file.
CVE-2017-11213 Critical Yes Arbitrary code execution
An out-of-bounds access vulnerability has been discovered in flashplugin before 27.0.0.187 leading to arbitrary code execution when playing a specially...
Date Advisory Package Description
15 Nov 2017 ASA-201711-21 flashplugin arbitrary code execution
References
https://helpx.adobe.com/security/products/flash-player/apsb17-33.html