Summary
This host is installed with Adobe Flash Player and is prone to buffer overflow vulnerability.
Impact
Successful exploitation will allow attackers to execute arbitrary code and cause a buffer overflow, resulting in a denial of service condition.
Impact Level: System/Application
Solution
Update to Adobe Flash Player version 11.7.700.279 or 13.0.0.206 or later, For updates refer to http://get.adobe.com/flashplayer
Insight
Flaw is due to an improper validation of user-supplied input to the pixel bender component.
Affected
Adobe Flash Player version before 11.7.700.279 and 11.8.x through 13.0.x before 13.0.0.206 on Windows
Detection
Get the installed version with the help of detect NVT and check the version is vulnerable or not.
References
Severity
Classification
-
CVE CVE-2014-0515 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe AIR Multiple Vulnerabilities-01 Sep13 (Mac OS X)
- Adobe Flash Player 'SWF' File Multiple Code Execution Vulnerability - Mac OS X
- Adobe Acrobat Out-of-bounds Vulnerability Feb15 (Mac OS X)
- Adobe Air Code Execution and DoS Vulnerabilities (MAC OS X)
- Adobe Extension Manager CS5 Insecure Library Loading Vulnerability (Win)