This script is Copyright (C) 2012-2016 Tenable Network Security, Inc.
The remote Windows host has a browser plugin that is affected by
multiple memory corruption vulnerabilities.
According to its version, the instance of Flash Player installed on
the remote Windows host is 10.x equal to or earlier than 10.3.183.16
or 11.x equal to or earlier than 22.214.171.124. It is, therefore,
reportedly affected by several critical memory corruption
- Memory corruption vulnerabilities related to URL
security domain checking. (CVE-2012-0772)
- A flaw in the NetStream Class that could lead to remote
code execution. (CVE-2012-0773)
- Two Flash Player memory corruption vulnerabilities
related to the Google Chrome interface.
By tricking a victim into visiting a specially crafted page, an
attacker may be able to utilize these vulnerabilities to execute
arbitrary code subject to the users' privileges.
See also :
Upgrade to Adobe Flash version 126.96.36.199 / 10.3.183.18 or later.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 7.7
Public Exploit Available : true