-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

===========================================================================
                         AUSCERT Security Bulletin

                               ASB-2017.0090
                     Adobe Flash Security Update Guide
                               14 June 2017

===========================================================================

        AusCERT Security Bulletin Summary
        ---------------------------------

Product:              Adobe Flash Player
Operating System:     Windows
Impact/Access:        Execute Arbitrary Code/Commands -- Remote with User Interaction
                      Denial of Service               -- Remote with User Interaction
Resolution:           Patch/Upgrade
CVE Names:            CVE-2017-3084 CVE-2017-3083 CVE-2017-3082
                      CVE-2017-3081 CVE-2017-3079 CVE-2017-3078
                      CVE-2017-3077 CVE-2017-3076 CVE-2017-3075
Member content until: Friday, July 14 2017
Reference:            ESB-2017.1475

OVERVIEW

        Microsoft has released its monthly security patch update for the 
        month of June 2017 for Adobe Flash. [1]
                
        This update resolves vulnerabilities across the following products:
        
        Adobe Flash Player


IMPACT

        Microsoft has given the following details regarding these 
        vulnerabilities:
        
        Details		Impact			Severity
        CVE-2017-3075	Remote Code Execution	Critical
        CVE-2017-3076	Remote Code Execution	Critical
        CVE-2017-3077	Remote Code Execution	Critical
        CVE-2017-3078	Remote Code Execution	Critical
        CVE-2017-3079	Remote Code Execution	Critical
        CVE-2017-3081	Remote Code Execution	Critical
        CVE-2017-3082	Remote Code Execution	Critical
        CVE-2017-3083	Remote Code Execution	Critical
        CVE-2017-3084	Remote Code Execution	Critical


MITIGATION

        Microsoft recommends updating the software with the version
        made available on the Microsoft Update Cataloge for the following 
        Knowledge Base articles. [1]
        
        KB4022730


REFERENCES

        [1] Security Update Guide
            https://portal.msrc.microsoft.com/en-us/security-guidance

AusCERT has made every effort to ensure that the information contained
in this document is accurate.  However, the decision to use the information
described is the responsibility of each user or organisation. The decision to
follow or act on information or advice contained in this security bulletin is
the responsibility of each user or organisation, and should be considered in
accordance with your organisation's site policies and procedures. AusCERT
takes no responsibility for consequences which may arise from following or
acting on information or advice contained in this security bulletin.

===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072

Internet Email: auscert@auscert.org.au
Facsimile:      (07) 3365 7031
Telephone:      (07) 3365 4417 (International: +61 7 3365 4417)
                AusCERT personnel answer during Queensland business hours 
                which are GMT+10:00 (AEST).
                On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967
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=wqHk
-----END PGP SIGNATURE-----