Adobe Flash Player Multiple Security Bypass Vulnerabilities - 01 Feb14 (Mac OS X) Network Vulnerability

Summary

This host is installed with Adobe Flash Player and is prone to multiple security bypass vulnerabilities.

Impact

Successful exploitation will allow attackers to bypass certain security restrictions and disclose potentially sensitive information. Impact Level: System/Application

Solution

Update to Adobe Flash Player version 11.7.700.272 or 12.0.0.77 or later, For updates refer to http://get.adobe.com/flashplayer

Insight

Flaw are due to multiple unspecified errors.

Affected

Adobe Flash Player version before 11.7.700.272 and 11.8.x through 12.0.x before 12.0.0.77 on Mac OS X

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://helpx.adobe.com/security/products/flash-player/apsb14-08.html
http://secunia.com/advisories/57271
http://www.osvdb.com/104318
http://www.osvdb.com/104319

Updated on 2015-03-25

Severity

Classification

CVE CVE-2014-0503, CVE-2014-0504
CVSS Base Score: 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:N

Related Vulnerabilities

Active Perl CGI.pm 'Set-Cookie' and 'P3P' HTTP Header Injection Vulnerability (Win)
aMSN session hijack vulnerability (Windows)
Apple Safari Webcore Webkit 'XSSAuditor.cpp' XSS Vulnerability (Mac OS X)
Adobe Products Unspecified Cross-Site Scripting Vulnerability June-2011 (Windows)
Adobe Reader Information Disclosure & Code Execution Vulnerabilities (Linux)

Take action and discover your vulnerabilities