| VID |
50027 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
A version of Adobe Flash Player that is earlier than 10.3.183.23. Such version is reportedly affected by Multiple Remote Vulnerabilities.
According to its version, the instance of Flash Player installed on the remote Windows host is 10.x equal to or earlier than 10.3.183.23. It is, therefore, allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-4164, CVE-2012-4165, and CVE-2012-4166.
* Note: This check requires an account with administrative privileges which can log into the host to scan. Absence of this condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
http://www.adobe.com/support/security/bulletins/apsb12-19.html
* Platforms Affected:
Adobe Flash Player prior to 10.3.183.23
Apple Mac OS X Any version
Linux Any version
Microsoft Windows Any version |
| Recommendation |
Upgrade to the latest version of Adobe Flash Player (10.3.183.23 or later), available from the Adobe Web site at http://get.adobe.com/flashplayer/ |
| Related URL |
CVE-2012-4163,CVE-2012-4164,CVE-2012-4165,CVE-2012-4166,CVE-2012-4167,CVE-2012-4168 (CVE) |
| Related URL |
55136 (SecurityFocus) |
| Related URL |
(ISS) |
|
