FreeBSD : linux-flashplugin -- remote code execution vulnerability (55a528e8-9787-11e0-b24a-001b2134ef46)

This script is Copyright (C) 2011-2013 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing one or more security-related
updates.

Description :

Adobe Product Security Incident Response Team reports :

A critical vulnerability has been identified in Adobe Flash Player
10.3.181.23 and earlier versions for Windows, Macintosh, Linux and
Solaris, and Adobe Flash Player 10.3.185.23 and earlier versions for
Android. This memory corruption vulnerability (CVE-2011-2110) could
cause a crash and potentially allow an attacker to take control of the
affected system. There are reports that this vulnerability is being
exploited in the wild in targeted attacks via malicious Web pages.

See also :

http://www.adobe.com/support/security/bulletins/apsb11-18.html
http://www.nessus.org/u?54e8ef98

Solution :

Update the affected packages.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
Public Exploit Available : true

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 55158 ()

Bugtraq ID:

CVE ID: CVE-2011-2110

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now