Summary
This host is installed with Adobe Flash
Player and is prone to multiple vulnerabilities.
Impact
Successful exploitation will allow attackers
to execute arbitrary code and compromise a user's system.
Impact Level: System/Application
Solution
Upgrade to Adobe Flash Player version
13.0.0.250 or 15.0.0.189 or later. For updates refer to http://get.adobe.com/flashplayer
Insight
Multiple Flaws are due to,
- Two unspecified errors can be exploited to corrupt memory and subsequently execute arbitrary code.
- An integer overflow error can be exploited to execute arbitrary code.
Affected
Adobe Flash Player version before
13.0.0.250 and 14.x and 15.x before 15.0.0.189 on Mac OS X
Detection
Get the installed version with the help of
detect NVT and check the version is vulnerable or not.
References
Severity
Classification
-
CVE CVE-2014-0558, CVE-2014-0564, CVE-2014-0569, CVE-2014-8439 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe Acrobat Multiple Unspecified Vulnerabilities - Mac OS X
- Adobe ExtendedScript Toolkit (ESTK) Insecure Library Loading Vulnerability (Win)
- Adobe AIR Multiple Vulnerabilities -01 April 13 (Mac OS X)
- Adobe Acrobat Multiple Vulnerabilities -01 Jan 13 (Windows)
- Adobe Air Multiple Vulnerabilities June-2012 (Windows)