Vulnerability Protection

Security Update for Adobe Flash Player

Details

Report ID:

MS20170103

Date Published:

17 January 2017

Date Revised:

Criticality:

Critical

Compromise Type:

Remote code execution

Compromise From:

Remote

Affected Product/Component:

Windows 8.1
Windows Server 2012 and Windows Server 2012 R2
WIndows RT 8.1
Windows 10
Windows Server 2016

Summary

A security update for Adobe Flash Player installed on supported editions of Windows systems has been issued to address multiple remote code execution vulnerabilities. 

Detailed Description

Microsoft has issued a security update for Adobe Flash Player installed on supported editions of Windows systems. The update addresses multiple remote code execution vulnerabilities as described in the Adobe Security Bulletin APSB17-02 by updating the affected Adobe Flash libraries contained within Internet Explorer 10, Internet Explorer 11, and Microsoft Edge. 

CVE Reference

CVE-2017-2925, CVE-2017-2926, CVE-2017-2927, CVE-2017-2928, CVE-2017-2930, CVE-2017-2931, CVE-2017-2932, CVE-2017-2933, CVE-2017-2934, CVE-2017-2935, CVE-2017-2936, CVE-2017-2937

Solution

Install the latest security patch for applicable systems, available for download from https://technet.microsoft.com/en-us/library/security/MS17-003

Source

Microsoft Security Bulletin MS17-003