Adobe Flash Player Buffer Overflow Vulnerability - Apr14 (Mac OS X) Network Vulnerability

Summary

This host is installed with Adobe Flash Player and is prone to buffer overflow vulnerability.

Impact

Successful exploitation will allow attackers to execute arbitrary code and cause a buffer overflow, resulting in a denial of service condition. Impact Level: System/Application

Solution

Update to Adobe Flash Player version 11.7.700.279 or 13.0.0.206 or later, For updates refer to http://get.adobe.com/flashplayer

Insight

Flaw is due to an improper validation of user-supplied input to the pixel bender component.

Affected

Adobe Flash Player version before 11.7.700.279 and 11.8.x through 13.0.x before 13.0.0.206 on Mac OS X

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://helpx.adobe.com/security/products/flash-player/apsb14-13.html
http://www.osvdb.com/106347
http://www.securelist.com/en/blog/8212

Updated on 2017-03-28

Severity

Classification

CVE CVE-2014-0515

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Air Multiple Vulnerabilities -01 May 13 (Windows)
Adobe Acrobat Out-of-bounds Vulnerability Feb15 (Mac OS X)
Adobe AIR Multiple Vulnerabilities-01 Sep13 (Mac OS X)
Adobe AIR Code Execution and DoS Vulnerabilities Nov13 (Windows)
Adobe Acrobat Multiple Vulnerabilities - 01 Jan14 (Windows)

Take action and discover your vulnerabilities