This script is Copyright (C) 2006-2017 Tenable Network Security, Inc.
The remote Windows host contains a browser plugin that is affected by
multiple HTTP header injection issues.
According to its version number, the instance of Flash Player on the
remote Windows host contains two ways for a remote attacker to perform
arbitrary HTTP requests while controlling most of the HTTP headers. A
remote attacker may be able to leverage these issues to conduct
cross-site request forgery attacks against a user who visits a
See also :
Upgrade to Flash Player version 220.127.116.11 / 18.104.22.168 / 22.214.171.124 or
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.1
Public Exploit Available : true