Vulnerability Protection

Security Update for Adobe Flash Player

Details

Report ID:

MS20170201

Date Published:

22 February 2017

Date Revised:

Criticality:

Critical

Compromise Type:

Remote code execution

Compromise From:

Remote

Affected Product/Component:

Windows 8.1
Windows Server 2012 and Windows Server 2012 R2
Windows RT 8.1
Windows 10
Windows Server 2016

Summary

A security update for Adobe Flash Player installed on supported editions of Windows system has been issued to address multiple remote code execution vulnerabilities. 

Detailed Description

Microsoft has issued a security update for Adobe Flash Player installed on supported editions of Windows systems. The update addresses multiple remote code execution vulnerabilities as described in the Adobe Security Bulletin APSB17-04 by updating the affected Adobe Flash Player libraries contained within Internet Explorer 10, Internet Explorer 11, and Microsoft Edge. 

CVE Reference

CVE-2017-2982, CVE-2017-2984, CVE-2017-2985, CVE-2017-2986, CVE-2017-2987, CVE-2017-2988, CVE-2017-2990, CVE-2017-2992, CVE-2017-2991, CVE-2017-2993, CVE-2017-2994, CVE-2017-2995, CVE-2017-2996

Solution

Install the latest security patch for applicable system, available for download from https://technet.microsoft.com/en-us/library/security/ms17-005

Source

Microsoft Security Bulletin MS17-005