Use-after-free vulnerability in Adobe Flash Player before 23.0.0.205 on Windows and OS X and before 11.2.202.643 on Linux allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in October 2016.

This update for Adobe Flash Player to 11.2.202.643 fixes the following vulnerability :

  - CVE-2016-7855: use-after-free vulnerability (APSB16-36,     boo#1007098)

The remote host is affected by the vulnerability described in GLSA-201610-10 (Adobe Flash Player: Multiple vulnerabilities)

    Multiple vulnerabilities have been discovered in Adobe Flash Player.
      Please review the CVE identifiers referenced below for details.
  Impact :

    A remote attacker could possibly execute arbitrary code with the       privileges of the process, cause a Denial of Service condition, obtain       sensitive information, or bypass security restrictions.
  Workaround :

    There is no known workaround at this time.

This update for flash-player to version 11.2.202.643 fixes one security issue. This security issue was fixed :

  - CVE-2016-7855: Use-after-free vulnerability that could     lead to code execution (bsc#1007098).

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

Adobe reports :

Adobe has released security updates for Adobe Flash Player for Windows, Macintosh, Linux and Chrome OS. These updates address a critical vulnerability that could potentially allow an attacker to take control of the affected system.

Adobe is aware of a report that an exploit for CVE-2016-7855 exists in the wild, and is being used in limited, targeted attacks against users running Windows versions 7, 8.1 and 10.

The remote Windows host is missing KB3201860. It is, therefore, affected by an arbitrary code execution vulnerability due to a use-after-free error. An unauthenticated, remote attacker can exploit this, by convincing a user to visit a website containing specially crafted Flash content, to dereference already freed memory, resulting in the execution of arbitrary code in the context of the current user.

The version of Adobe Flash Player installed on the remote macOS or Mac OS X host is equal or prior to version 23.0.0.185. It is, therefore, affected by an arbitrary code execution vulnerability due to a use-after-free error. An unauthenticated, remote attacker can exploit this, by convincing a user to visit a website containing specially crafted Flash content, to dereference already freed memory, resulting in the execution of arbitrary code in the context of the current user.

The version of Adobe Flash Player installed on the remote Windows host is equal or prior to version 23.0.0.185. It is, therefore, affected by an arbitrary code execution vulnerability due to a use-after-free error. An unauthenticated, remote attacker can exploit this, by convincing a user to visit a website containing specially crafted Flash content, to dereference already freed memory, resulting in the execution of arbitrary code in the context of the current user.

An update for flash-plugin is now available for Red Hat Enterprise Linux 5 Supplementary and Red Hat Enterprise Linux 6 Supplementary.

Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in.

This update upgrades Flash Player to version 11.2.202.643.

Security Fix(es) :

* This update fixes one vulnerability in Adobe Flash Player. This vulnerability, detailed in the Adobe Security Bulletin listed in the References section, could allow an attacker to create a specially crafted SWF file that would cause flash-plugin to crash, execute arbitrary code, or disclose sensitive information when the victim loaded a page containing the malicious SWF content. (CVE-2016-7855)

ID	Name	Product	Family	Severity
94424	openSUSE Security Update : flash-player (openSUSE-2016-1240)	Nessus	SuSE Local Security Checks	high
94423	openSUSE Security Update : flash-player (openSUSE-2016-1239)	Nessus	SuSE Local Security Checks	high
94421	GLSA-201610-10 : Adobe Flash Player: Multiple vulnerabilities	Nessus	Gentoo Local Security Checks	critical
94350	SUSE SLED12 Security Update : flash-player (SUSE-SU-2016:2662-1)	Nessus	SuSE Local Security Checks	high
94347	FreeBSD : flash -- remote code execution (de6d01d5-9c44-11e6-ba67-0011d823eebd)	Nessus	FreeBSD Local Security Checks	high
94340	MS16-128: Security Update for Adobe Flash Player (3201860)	Nessus	Windows : Microsoft Bulletins	high
94335	Adobe Flash Player for Mac <= 23.0.0.185 Arbitrary Code Execution (APSB16-36)	Nessus	MacOS X Local Security Checks	high
94334	Adobe Flash Player <= 23.0.0.185 Arbitrary Code Execution (APSB16-36)	Nessus	Windows	high
94318	RHEL 5 / 6 : flash-plugin (RHSA-2016:2119)	Nessus	Red Hat Local Security Checks	high

Detections

Analytics

CVE-2016-7855

high

Tenable Plugins

high

high

critical

high

high

high

high

high

high