Adobe has released two security updates for Adobe Flash Player, and Adobe Experience Manager Forms. The updates addresses a critical vulnerability in Adobe Flash Player and an important vulnerability in Adobe Experience Manager Forms. The security update covers a total of 8 CVE’s. These flaws allow attackers to take complete control of the system. The Linux and Mac operating systems are affected apart from Windows.

Here are the details of the vulnerabilities patched.
Adobe Flash player (APSB17-15) :

Affected versions of Adobe Flash Player are:

  • Flash Player versions and earlier for Windows, and Linux.
  • Flash Player versions and earlier for Macintosh
  • Flash Player version and earlier for Adobe Flash Player for Google Chrome.
  • Flash Player version and earlier for Adobe Flash Player for Microsoft Edge and Internet Explorer 11 on Windows 10 and Windows 8.x.

Adobe Experience Manager Forms (APSB17-16) :

  • These updates resolve an information disclosure vulnerability (CVE-2017-3067) resulting from abuse of the pre-population service in AEM Forms. This issue was resolved by providing administrators with additional controls in the configuration manager to restrict the file paths and protocols used to pre-fill a form.

Affected versions of Adobe Experience Manager Forms are:

  • Adobe Experience Manager Form versions 6.0, 6.1, 6.2 on Windows, Linux, Solaris and AIX
Article Name
Adobe Security Updates for May 2017
Publisher Name
SecPod Technologies
Publisher Logo

Leave a Reply

Your email address will not be published. Required fields are marked *