General : Adobe Flash Player Arbitrary Code Execution Vulnerability

Búsqueda de Vulnerabilidad		Buscar 219043 Descripciones CVE y 99761 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.804086

Categoría: General

Título: Adobe Flash Player Arbitrary Code Execution Vulnerability - 01 Feb14 (Mac OX S)

Resumen: This host is installed with Adobe Flash Player and is prone to arbitrary;code execution vulnerability.

Descripción: Summary:
This host is installed with Adobe Flash Player and is prone to arbitrary
code execution vulnerability.

Vulnerability Insight:
Flaw is due to an integer underflow condition that is triggered as unspecified
user-supplied input is not properly validated.

Vulnerability Impact:
Successful exploitation will allow attackers to, execute arbitrary code and
cause buffer overflow.

Affected Software/OS:
Adobe Flash Player versions before 11.7.700.261 and 11.8.x through 12.0.x
before 12.0.0.44 on Mac OS X

Solution:
Update to Adobe Flash Player version 11.7.700.261 or 12.0.0.44 or later.

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Referencia Cruzada: BugTraq ID: 65327
Common Vulnerability Exposure (CVE) ID: CVE-2014-0497
http://www.securityfocus.com/bid/65327
http://www.exploit-db.com/exploits/33212
http://www.osvdb.org/102849
RedHat Security Advisories: RHSA-2014:0137
http://rhn.redhat.com/errata/RHSA-2014-0137.html
http://www.securitytracker.com/id/1029715
http://secunia.com/advisories/56437
http://secunia.com/advisories/56737
http://secunia.com/advisories/56780
http://secunia.com/advisories/56799
http://secunia.com/advisories/56839
SuSE Security Announcement: SUSE-SU-2014:0221 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00006.html
SuSE Security Announcement: openSUSE-SU-2014:0197 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00000.html
SuSE Security Announcement: openSUSE-SU-2014:0203 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00001.html
XForce ISS Database: adobe-flash-cve20140497-code-exec(90884)
https://exchange.xforce.ibmcloud.com/vulnerabilities/90884

Copyright Copyright (C) 2014 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.804086
Categoría:	General
Título:	Adobe Flash Player Arbitrary Code Execution Vulnerability - 01 Feb14 (Mac OX S)
Resumen:	This host is installed with Adobe Flash Player and is prone to arbitrary;code execution vulnerability.
Descripción:	Summary: This host is installed with Adobe Flash Player and is prone to arbitrary code execution vulnerability. Vulnerability Insight: Flaw is due to an integer underflow condition that is triggered as unspecified user-supplied input is not properly validated. Vulnerability Impact: Successful exploitation will allow attackers to, execute arbitrary code and cause buffer overflow. Affected Software/OS: Adobe Flash Player versions before 11.7.700.261 and 11.8.x through 12.0.x before 12.0.0.44 on Mac OS X Solution: Update to Adobe Flash Player version 11.7.700.261 or 12.0.0.44 or later. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	BugTraq ID: 65327 Common Vulnerability Exposure (CVE) ID: CVE-2014-0497 http://www.securityfocus.com/bid/65327 http://www.exploit-db.com/exploits/33212 http://www.osvdb.org/102849 RedHat Security Advisories: RHSA-2014:0137 http://rhn.redhat.com/errata/RHSA-2014-0137.html http://www.securitytracker.com/id/1029715 http://secunia.com/advisories/56437 http://secunia.com/advisories/56737 http://secunia.com/advisories/56780 http://secunia.com/advisories/56799 http://secunia.com/advisories/56839 SuSE Security Announcement: SUSE-SU-2014:0221 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00006.html SuSE Security Announcement: openSUSE-SU-2014:0197 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00000.html SuSE Security Announcement: openSUSE-SU-2014:0203 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00001.html XForce ISS Database: adobe-flash-cve20140497-code-exec(90884) https://exchange.xforce.ibmcloud.com/vulnerabilities/90884
Copyright	Copyright (C) 2014 Greenbone Networks GmbH