Security Advisory - March 14, 2017
Zscaler protects against 5 new vulnerabilities for Adobe Flash Player.
Zscaler, working with Microsoft through their MAPP program, has proactively deployed protections for the following 5 vulnerabilities included in the March 2017 Adobe security bulletins. Zscaler will continue to monitor exploits associated with all vulnerabilities in the March release and deploy additional protections as necessary.
APSB17-07 – Security updates available for Adobe Flash Player
Adobe has released security updates for Adobe Flash Player for Windows, Macintosh, Linux and Chrome OS. These updates address critical vulnerabilities that could potentially allow an attacker to take control of the affected system.
- Adobe Flash Player Desktop Runtime 18.104.22.168 and earlier
- Adobe Flash Player for Google Chrome 22.214.171.124 and earlier
- Adobe Flash Player for Microsoft Edge and Internet Explorer 11 126.96.36.199 and earlier
CVE-2017-2997 – Flash Player Buffer Overflow / Underflow Vulnerability
CVE-2017-2998 – Flash Player Memory Corruption Vulnerability
CVE-2017-2999 – Flash Player Memory Corruption Vulnerability
CVE-2017-3001 – Flash Player Use After Free Vulnerability
CVE-2017-3003 – Flash Player Use After Free Vulnerability