openSUSE 10 Security Update : flash-player (flash-player-2072)

This script is Copyright (C) 2007-2014 Tenable Network Security, Inc.


Synopsis :

The remote openSUSE host is missing a security update.

Description :

Multiple input validation errors have been identified in Flash Player
that could lead to the potential execution of arbitrary code. These
vulnerabilities could be accessed through content delivered from a
remote location via the user's web browser, email client, or other
applications that include or reference the Flash Player.
(CVE-2006-3311, CVE-2006-3587, CVE-2006-3588)

These updates include changes to prevent circumvention of the
'allowScriptAccess' option. (CVE-2006-4640)

Solution :

Update the affected flash-player package.

Risk factor :

Medium / CVSS Base Score : 6.8
(CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P)

Family: SuSE Local Security Checks

Nessus Plugin ID: 27219 ()

Bugtraq ID:

CVE ID: CVE-2006-3311
CVE-2006-3587
CVE-2006-3588
CVE-2006-4640

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now