Adobe Flash Player/Air Multiple Vulnerabilities - August10 (Linux) Network Vulnerability

Summary

This host is installed with Adobe Flash Player/Air and is prone to multiple vulnerabilities.

Impact

Successful exploitation will allow attackers to execute arbitrary code, cause denial-of-service conditions, or perform click-jacking attacks. Impact Level: Application/System.

Solution

Upgrade to Adobe Air 2.0.3 and Adobe Flash Player 9.0.280 or 10.1.82.76 or later For updates refer to http://get.adobe.com/air http://www.adobe.com/support/flashplayer/downloads.html

Insight

The flaws are due to memory corruptions and click-jacking issue via unspecified vectors.

Affected

Adobe AIR version prior to 2.0.3 Adobe Flash Player version before 9.0.280 and 10.x before 10.1.82.76 on Linux

References

http://www.adobe.com/support/security/bulletins/apsb10-16.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-0209, CVE-2010-2213, CVE-2010-2214, CVE-2010-2215, CVE-2010-2216

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Asterisk PBX NULL Pointer Dereference Overflow
CesarFTP MKD Command Buffer Overflow
Google Chrome Multiple Denial of Service Vulnerabilities - March12 (Mac OS X)
EMC NetWorker 'nsrexecd' RPC Packet Denial of Service Vulnerability
Checkpoint Firewall-1 UDP denial of service

Take action and discover your vulnerabilities