본문 바로가기

취약점 정보2

Adobe Security Bulletin

728x90

Summary

Adobe has released a security update for Adobe Flash Player for Windows, Macintosh, Linux and Chrome OS. This update addresses a critical type confusion vulnerability that could lead to code execution.

Adobe is aware of a report that an exploit for CVE-2017-11292 exists in the wild, and is being used in limited, targeted attacks against users running Windows.

Affected Product Versions

ProductVersionPlatform
Adobe Flash Player Desktop Runtime27.0.0.159Windows, Macintosh
Adobe Flash Player for Google Chrome27.0.0.159Windows, Macintosh, Linux and Chrome OS 
Adobe Flash Player for Microsoft Edge and Internet Explorer 1127.0.0.130Windows 10 and 8.1
Adobe Flash Player Desktop Runtime27.0.0.159Linux

To verify the version of Adobe Flash Player installed on your system, access the About Flash Player page, or right- click on content running in Flash Player and select "About Adobe (or Macromedia) Flash Player" from the menu. If you use multiple browsers, perform the check for each browser you have installed on your system.

Solution

Adobe categorizes these updates with the following priority ratings and recommends users update their installation to the newest version:

ProductVersionPlatformPriorityAvailability
Adobe Flash Player Desktop Runtime27.0.0.170Windows, Macintosh1

Flash Player Download Center

Flash Player Distribution

Adobe Flash Player for Google Chrome27.0.0.170Windows, Macintosh, Linux and Chrome OS 1Google Chrome Releases
Adobe Flash Player for Microsoft Edge and Internet Explorer 1127.0.0.170Windows 10 and 8.11Microsoft Security Advisory
Adobe Flash Player Desktop Runtime
728x90