Oval Definition:oval:org.cisecurity:def:1892
Revision Date:2017-03-10Version:5
Title:Vulnerability in Adobe Flash Player versions 24.0.0.194 and earlier - CVE-2017-2993
Description:Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable use after free vulnerability related to event handlers. Successful exploitation could lead to arbitrary code execution.
Family:windowsClass:vulnerability
Status:INTERIMReference(s):APSB17-04
CVE-2017-2993
Platform(s):Microsoft Windows 10
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows 8.1
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Product(s):ActiveX Control
Adobe Flash Player
Google Chrome
Pepper Flash
Definition Synopsis
  • Adobe Flash Player is installed + version (ESR)
  • Adobe Flash Player is installed
  • AND Check if the Adobe Flash Player is less than 24.0.0.221
  • OR ActiveX Control Version
  • ActiveX Control is installed
  • AND Check for Flash*.ocx file version
  • Check if Flash*.ocx version is less than 24.0.0.221
  • OR Google Chrome + Pepperflash version
  • Google Chrome is installed
  • AND Check if the version of Pepper Flash Player for Google Chrome is less than 24.0.0.221
  • BACK