CVE-2017-3085 Microsoft Windows Adobe Flash Player Security Update for August 2017

2017年8月13日 1253点热度 0人点赞 0条评论

漏洞类别：Internet Explorer

漏洞等级：

漏洞信息

This update addresses vulnerabilities which are described in the Adobe Security Bulletin APSB17-23, if installed on any supported edition of Microsoft Windows 10 Version 1607, Windows 10 Version 1511, Windows 10 Version 1703, Windows 8.1, Windows Server 2012, Windows Server 2016, Windows Server 2012 R2, Windows 10 and Windows RT 8.1

QID Detection Logic:
Operating Systems: Windows 8.1, Windows RT 8.1, Windows10, Windows Server 2012, Windows Server 2012 R2, Windows Server 2016
This authenticated QID checks for the file version of %windir%\System32\Macromed\Flash\Flash.ocx for file versions lesser than 26.0.0.151.

漏洞危害

Successful exploitation allows an attacker to execute arbitrary code and bypass security restrictions to gain access to sensitive information.

解决方案

Customers are advised to follow ADV170010 for instructions pertaining to the remediation of these vulnerabilities.

Patch:
Following are links for downloading patches to fix the vulnerabilities:

ADV170010

0daybank

CVE-2017-3085 Microsoft Windows Adobe Flash Player Security Update for August 2017

文章评论