SuSE Security Advisory SUSE-SA:2009:062 (flash-player) Network Vulnerability

Summary

The remote host is missing updates announced in advisory SUSE-SA:2009:062.

Solution

Update your system with the packages as indicated in the referenced security advisory. https://secure1.securityspace.com/smysecure/catid.html?in=SUSE-SA:2009:062

Insight

A security update was released for the Adobe Flash Player 10. Specially crafted Flash (SWF) files can cause overflows in flash-player. Attackers could potentially exploit that to execute arbitrary code. Fixed packages for Adobe Flash Player 9 (the version found in SUSE Linux Enterprise 10, Novell Linux Desktop 9 and openSUSE 11.0) will hopefully be released in the new year.

Severity

Classification

CVE CVE-2009-3794, CVE-2009-3796, CVE-2009-3797, CVE-2009-3798, CVE-2009-3799, CVE-2009-3800, CVE-2009-3951
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

SLES10: Security update for liblcms
SLES10: Security update for Linux kernel
SLES10: Security update for curl
SLES10: Security update for cyrus-sasl
SLES10: Security update for MozillaFirefox

Take action and discover your vulnerabilities