CVE-2017-3100

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Adobe Flash Player versions 26.0.0.131 and earlier

Description The issue is a memory corruption vulnerability in the Action Script 2 BitmapData class. This vulnerability could allow attackers to affect the system and lead to memory address disclosure. Successful exploitation of this issue could have significant consequences.

Recommendations For Adobe Flash Player versions 26.0.0.131 and earlier, consider updating to a version later than 26.0.0.131 to resolve the issue. As a temporary workaround, consider restricting the use of the Action Script 2 BitmapData class until a patch is available.

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

CVE-2017-3100

MGASA-2017-0211

RHSA-2017:1731

RHSA-2017_1731

ZDI-17-477

Affected Products

Flash Player

Red Hat

CVE-2017-3100

Weakness Enumeration

Related Identifiers

Affected Products

References · 15