Adobe Flash Player for Mac <= 184.108.40.206 Multiple Vulnerabilities (APSB17-07)
Critical Nessus Plugin ID 97728
SynopsisThe remote macOS or Mac OS X host has a browser plugin installed that is affected by multiple vulnerabilities.
DescriptionThe version of Adobe Flash Player installed on the remote macOS or Mac OS X host is equal or prior to version 220.127.116.11. It is, therefore, affected by multiple vulnerabilities :
- A buffer overflow condition exists that allows an attacker to execute arbitrary code. (CVE-2017-2997)
- Multiple memory corruption issues exist that allow an attacker to execute arbitrary code. (CVE-2017-2998, CVE-2017-2999)
- An unspecified flaw exists in the random number generator used for constant binding that allows an attacker to disclose sensitive information.
- Multiple use-after-free errors exist that allow an attacker to execute arbitrary code. (CVE-2017-3001, CVE-2017-3002, CVE-2017-3003)
SolutionUpgrade to Adobe Flash Player version 18.104.22.168 or later.