Adobe Flash Player Buffer Overflow Vulnerability - Apr14 (Mac OS X) Network Vulnerability

Summary

This host is installed with Adobe Flash Player and is prone to buffer overflow vulnerability.

Impact

Successful exploitation will allow attackers to execute arbitrary code and cause a buffer overflow, resulting in a denial of service condition. Impact Level: System/Application

Solution

Update to Adobe Flash Player version 11.7.700.279 or 13.0.0.206 or later, For updates refer to http://get.adobe.com/flashplayer

Insight

Flaw is due to an improper validation of user-supplied input to the pixel bender component.

Affected

Adobe Flash Player version before 11.7.700.279 and 11.8.x through 13.0.x before 13.0.0.206 on Mac OS X

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://helpx.adobe.com/security/products/flash-player/apsb14-13.html
http://www.osvdb.com/106347
http://www.securelist.com/en/blog/8212

Updated on 2017-03-28

Severity

Classification

CVE CVE-2014-0515
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe ExtendedScript Toolkit (ESTK) Insecure Library Loading Vulnerability (Win)
Adobe Air Multiple Vulnerabilities - November12 (Mac OS X)
Adobe AIR Security Bypass Vulnerability Jan14 (Windows)
Adobe AIR Multiple Vulnerabilities-01 Jan15 (Windows)
Adobe Air Multiple Vulnerabilities -01 August 12 (Windows)

Take action and discover your vulnerabilities