CVE-2017-2930

HIGH

Adobe Flash Player < 24.0.0.186 - Memory Corruption via Display List Concurrency Error

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2017-2930. PoCs published by COSIG.

AI-analyzed exploit summary This is a vulnerability advisory for CVE-2017-2930, detailing an out-of-bounds memory corruption in Adobe Flash Player that could lead to remote code execution. The advisory includes technical details and references to a proof-of-concept (PoC) but does not contain actual exploit code.

Description

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable memory corruption vulnerability due to a concurrency error when manipulating a display list. Successful exploitation could lead to arbitrary code execution.

Exploits (2)

exploitdb WRITEUP VERIFIED
by COSIG · textdosmultiple
https://www.exploit-db.com/exploits/41012

This is a vulnerability advisory for CVE-2017-2930, detailing an out-of-bounds memory corruption in Adobe Flash Player that could lead to remote code execution. The advisory includes technical details and references to a proof-of-concept (PoC) but does not contain actual exploit code.

Classification
Writeup 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Theoretical
Target: Adobe Flash Player 24.0.0.186 and earlier
No auth needed
Prerequisites: User interaction required (visiting a malicious webpage or opening a crafted SWF file)
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by COSIG · textdosmultiple
https://www.exploit-db.com/exploits/41008

This is a vulnerability advisory for CVE-2017-2930, detailing an out-of-bounds memory corruption in Adobe Flash Player. The vulnerability allows remote code execution via a crafted SWF file with an invalid 'ActionGetURL2' value in the 'ActionRecord' structure.

Classification
Writeup 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Theoretical
Target: Adobe Flash Player 24.0.0.186 and earlier
No auth needed
Prerequisites: User interaction (visiting a malicious webpage or opening a crafted SWF file)
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (9)

Core 9
Core References
Third Party Advisory vendor-advisory x_refsource_gentoo
https://security.gentoo.org/glsa/201702-20
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/41012/
Third Party Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2017-0057.html
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/41008/
Broken Link x_refsource_misc
https://cosig.gouv.qc.ca/en/cosig-2017-01-en/
Broken Link, Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1037570
Broken Link, Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/95350

Scores

CVSS v3 8.8
EPSS 0.2525
EPSS Percentile 97.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-787
Status published
Products (2)
adobe/flash_player < 24.0.0.186 (4 CPE variants)
n/a/Adobe Flash Player 24.0.0.186 and earlier. Adobe Flash Player 24.0.0.186 and earlier.
Published Jan 11, 2017
Tracked Since Feb 18, 2026