Adobe Flash Player Security Bypass Vulnerability Jan14 (Windows) Network Vulnerability

Summary

This host is installed with Adobe Flash Player and is prone to security bypass vulnerability.

Impact

Successful exploitation will allow attackers to, bypass certain security restrictions and disclose certain memory informations. Impact Level: System/Application

Solution

Update to Adobe Flash Player version 11.7.700.260 or 12.0.0.38 or later, For updates refer to http://get.adobe.com/flashplayer

Insight

Flaw is due to an unspecified error and other additional weakness.

Affected

Adobe Flash Player version before 11.7.700.260, 11.8.x, 11.9.x before 12.0.0.38 on Windows.

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://helpx.adobe.com/security/products/flash-player/apsb14-02.html
http://secunia.com/advisories/56267
http://www.osvdb.com/101982
http://www.osvdb.com/101983

Updated on 2015-03-25

Severity

Classification

CVE CVE-2014-0491, CVE-2014-0492

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Flash Player 'SWF' File Multiple Code Execution Vulnerability - Windows
Adobe Air Multiple Vulnerabilities - October 12 (Mac OS X)
Adobe AIR Multiple Vulnerabilities-01 Dec13 (Windows)
Adobe Acrobat Multiple Unspecified Vulnerabilities -01 May13 (Windows)
Adobe Air Multiple Vulnerabilities - November12 (Windows)

Take action and discover your vulnerabilities