Flash Player < 9.0.124.0 APSB08-11 Multiple Vulnerabilities

medium Nessus Network Monitor Plugin ID 4461

Synopsis

The remote Windows host contains a browser plugin that is affected by multiple issues.

Description

According to its version number, the instance of Flash Player on the remote Windows host is affected by multiple issues, including several that could allow for arbitrary code execution.

Solution

Upgrade to version 9.0.124.0 or higher.

See Also

http://www.adobe.com/support/security/bulletins/apsb08-11.html

Plugin Details

Severity: Medium

ID: 4461

Family: Web Clients

Published: 4/14/2008

Updated: 3/6/2019

Nessus ID: 31799

Risk Information

VPR

Risk Factor: Critical

Score: 9.7

CVSS v2

Risk Factor: Medium

Base Score: 6.4

Temporal Score: 5.3

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N

CVSS v3

Risk Factor: Medium

Base Score: 6.5

Temporal Score: 6.2

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Temporal Vector: CVSS:3.0/E:H/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:adobe:flash_player

Exploitable With

CANVAS (CANVAS)

Core Impact

Reference Information

CVE: CVE-2007-0071, CVE-2007-5275, CVE-2007-6019, CVE-2007-6243, CVE-2007-6637, CVE-2008-1654, CVE-2008-1655

BID: 26930, 26966, 27034, 28694, 28695, 28696, 28697