Detections
Analytics

Flash Player for Mac <= 10.3.183.15 / 11.1.102.62 Multiple Vulnerabilities (APSB12-05)

high Nessus Plugin ID 58208

Language:

Synopsis

The remote Mac OS X host has a browser plugin that is affected by multiple vulnerabilities.

Description

According to its version, the instance of Flash Player installed on the remote Mac OS X host is 10.x equal to or earlier than 10.3.183.15 or 11.x equal to or earlier than 11.1.102.62. It is, therefore, reportedly affected by several critical vulnerabilities :

 - A memory corruption vulnerability exists in Matrix3D that could lead to code execution. (CVE-2012-0768)

 - Multiple integer errors exist that could lead to information disclosure. (CVE-2012-0769)

Solution

Upgrade to Adobe Flash version 10.3.183.16 / 11.1.102.63 or later.

See Also

http://www.adobe.com/support/security/bulletins/apsb12-05.html

Plugin Details

Severity: High

ID: 58208

File Name: macosx_flash_player_11_1_102_63.nasl

Version: 1.10

Type: local

Agent: macosx

Published: 3/5/2012

Updated: 7/16/2018

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: High

Score: 8.9

CVSS v2

Risk Factor: High

Base Score: 9.3

Temporal Score: 8.1

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/a:adobe:flash_player

Required KB Items: MacOSX/Flash_Player/Version

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 3/5/2012

Vulnerability Publication Date: 3/5/2012

Reference Information

CVE: CVE-2012-0768, CVE-2012-0769

BID: 52297, 52299