Flash Player < 9.0.115.0 / 7.0.73.0 APSB07-20 Multiple Vulnerabilities

high Nessus Network Monitor Plugin ID 4322

Synopsis

The remote Windows host contains a browser plugin that is affected by multiple issues.

Description

According to its version number, the instance of Flash Player on the remote Windows host is affected by multiple issues, including several that could allow for arbitrary code execution by means of a malicious SWF file.

Solution

Upgrade to version 9.0.115.0, 7.0.73.0 or higher.

See Also

http://www.adobe.com/support/security/bulletins/apsb07-20.html

Plugin Details

Severity: High

ID: 4322

Family: Web Clients

Published: 12/19/2007

Updated: 3/6/2019

Nessus ID: 29741

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: High

Base Score: 9.3

Temporal Score: 7.7

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

CVSS v3

Risk Factor: High

Base Score: 8.1

Temporal Score: 7.5

Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:adobe:flash_player

Reference Information

CVE: CVE-2007-1659, CVE-2007-1660, CVE-2007-1661, CVE-2007-1662, CVE-2007-4324, CVE-2007-4766, CVE-2007-4767, CVE-2007-4768, CVE-2007-5275, CVE-2007-6242, CVE-2007-6243, CVE-2007-6244, CVE-2007-6245, CVE-2007-6246

BID: 25260, 26346, 26929, 26930, 26951, 26949, 26960, 26965, 26969, 26966