Vulnerability CVE-2017-3078: Information

Description

Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable memory corruption vulnerability in the Adobe Texture Format (ATF) module. Successful exploitation could lead to arbitrary code execution.

Severity: CRITICAL (9.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Fixed packages

References to Advisories, Solutions, and Tools

1. Affected configurations:

   1. Configuration 1

      cpe:2.3:a:adobe:flash_player:*:*:*:*:*:edge:*:*

      ---

      cpe:2.3:a:adobe:flash_player:*:*:*:*:*:internet_explorer:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_10:*:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:*:*

      ---

      Configuration 2

      cpe:2.3:a:adobe:flash_player:*:*:*:*:*:chrome:*:*

      ---

      Running on/with:

      cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:google:chrome_os:-:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

      ---

      Configuration 3

      cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

      ---