Summary
This host is installed with Adobe Flash
Player and is prone to multiple vulnerabilities.
Impact
Successful exploitation will allow remote
attackers to corrupt memory, dereference already freed memory, execute arbitrary code or have other unspecified impacts.
Impact Level: System/Application.
Solution
Upgrade to Adobe Flash Player version
13.0.0.269 or 16.0.0.305 or later. For updates refer http://get.adobe.com/flashplayer
Insight
Multiple flaws exists due to,
- Multiple unspecified use-after-free errors.
- Multiple unspecified errors due to improper validation of user-supplied input.
- Multiple unspecified type confusion errors.
- Multiple errors leading to overflow condition.
- Multiple unspecified NULL pointer dereference errors.
Affected
Adobe Flash Player before version
13.0.0.269 and 14.x through 16.x before 16.0.0.305 on Mac OS X.
Detection
Get the installed version with the help
of detect NVT and check the version is vulnerable or not.
References
Severity
Classification
-
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Active Perl Locale::Maketext Module Multiple Code Injection Vulnerabilities (Windows)
- Adobe Air Code Execution and DoS Vulnerabilities (MAC OS X)
- Adobe Acrobat Multiple Vulnerabilities - 01 May14 (Mac OS X)
- Adobe Acrobat Multiple Vulnerabilities - 01 Jan14 (Windows)
- Adobe Air Multiple Vulnerabilities -01 May 13 (Mac OS X)