CVE-2017-2930

CVE-2017-2930

Name

CVE-2017-2930

Description

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable memory corruption vulnerability due to a concurrency error when manipulating a display list. Successful exploitation could lead to arbitrary code execution.

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
Third Party Advisory	http://packetstormsecurity.com/files/140463/Adobe-Flash-24.0.0.186-Code-Execution.html
Third Party Advisory	http://rhn.redhat.com/errata/RHSA-2017-0057.html
Broken Link	http://www.securityfocus.com/bid/95350
Broken Link	http://www.securitytracker.com/id/1037570
Broken Link	https://cosig.gouv.qc.ca/en/cosig-2017-01-en/
Patch	https://helpx.adobe.com/security/products/flash-player/apsb17-02.html
Third Party Advisory	https://security.gentoo.org/glsa/201702-20
Exploit	https://www.exploit-db.com/exploits/41008/
Exploit	https://www.exploit-db.com/exploits/41012/

Type

URI

Third Party Advisory

http://packetstormsecurity.com/files/140463/Adobe-Flash-24.0.0.186-Code-Execution.html

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2017-0057.html

Broken Link

http://www.securityfocus.com/bid/95350

Broken Link

http://www.securitytracker.com/id/1037570

Broken Link

https://cosig.gouv.qc.ca/en/cosig-2017-01-en/