Use After Free Vulnerability in Adobe Flash Player's ActionScript FileReference Class

Use After Free Vulnerability in Adobe Flash Player's ActionScript FileReference Class

CVE-2017-2936 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable use after free vulnerability in the ActionScript FileReference class. Successful exploitation could lead to arbitrary code execution.

Learn more about our Web Application Penetration Testing UK.