This script is Copyright (C) 2012 Tenable Network Security, Inc.
The remote Mac OS X host has a browser plugin that is affected by
multiple memory corruption vulnerabilities.
According to its version, the instance of Flash Player installed on
the remote Mac OS X host is 10.x equal to or earlier than
10.3.183.16 or 11.x equal to or earlier than 220.127.116.11. It is,
therefore, reportedly affected by several critical memory corruption
- Memory corruption vulnerabilities related to URL
security domain checking. (CVE-2012-0772)
- A flaw in the NetStream Class that could lead to remote
code execution. (CVE-2012-0773)
By tricking a victim into visiting a specially crafted page, an
attacker may be able to utilize these vulnerabilities to execute
arbitrary code subject to the users' privileges.
See also :
Upgrade to Adobe Flash version 18.104.22.168 / 10.3.183.18 or later.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 7.7
Public Exploit Available : true
Family: MacOS X Local Security Checks
Nessus Plugin ID: 58540 ()
Bugtraq ID: 52748
CVE ID: CVE-2012-0772CVE-2012-0773
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.