Hillstone Networks

RULE（RULE ID：316861）

Rule General Information


Release Date:		2017-01-10

Rule Name:		FILE-FLASH Adobe Flash Player APSB17-02 Multiple Heap Buffer Overflow Vulnerabilities (CVE-2017-2933)

Severity:

CVE ID:

Rule Protection Details


Description:		Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable heap overflow vulnerability related to texture compression. Successful exploitation could lead to arbitrary code execution.

Impact:		A buffer overflow vulnerability can be triggered by an attacker in the context of the vulnerable product. Further attacks includes arbitrary code execution and denial of service.

Affected OS:		Windows

Reference:		SecurityFocusBID:95347 SecurityTrackerID:1037570 AdobeSecurityBulletins:apsb17-02

Solutions

Adobe has issued a fix on the official website. For more advisory, please visit https://helpx.adobe.com/security/products/flash-player/apsb17-02.html