Summary
This host is installed with Adobe Flash Player and is prone to cross-site scripting vulnerability.
Impact
Successful exploitation will allow attacker to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site.
Impact Level: Application/System
Solution
Upgrade to Adobe Flash Player version 10.3.181.22 or later.
For updates refer to http://www.adobe.com/downloads/
Insight
The flaw is caused by improper validation of certain unspecified input, which allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Affected
Adobe Flash Player versions before 10.3.181.22 on Linux.
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2011-2107 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N
Related Vulnerabilities
- Asterisk RTP Comfort Noise Processing Remote Denial of Service Vulnerability
- Adobe Flash Player Multiple Security Bypass Vulnerabilities - 01 Feb14 (Windows)
- Apple Safari Web Script Execution Vulnerabilites - June09
- Adobe Reader Plugin Signature Bypass Vulnerability (Windows)
- Asterisk SIP REGISTER Response Username Enumeration Vulnerability