Adobe Products Unspecified Cross-Site Scripting Vulnerability June-2011 (Windows) Network Vulnerability

Summary

This host is installed with Adobe Flash Player, Adobe Reader or Acrobat and is prone to cross-site scripting vulnerability.

Impact

Successful exploitation will allow attacker to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. Impact Level: Application/System

Solution

Upgrade to Adobe Flash Player version 10.3.181.22 or later. For details refer, http://www.adobe.com/downloads/

Insight

The flaw is caused by improper validation of certain unspecified input, which allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected

Adobe Flash Player versions prior to 10.3.181.22 on Windows. Adobe Reader and Acrobat X versions 10.0.3 and prior on Windows.

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://www.adobe.com/support/security/bulletins/apsb11-13.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-2107
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N

Related Vulnerabilities

Take action and discover your vulnerabilities