MS KB2857645: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer 10

This script is Copyright (C) 2013-2017 Tenable Network Security, Inc.


Synopsis :

The remote host has an ActiveX control installed that is affected by
memory corruption vulnerabilities.

Description :

The remote host is missing KB2857645. It is, therefore, affected by
memory corruption vulnerabilities in the installed version of the Adobe
Flash ActiveX control, which could lead to code execution.

See also :

http://www.zerodayinitiative.com/advisories/ZDI-13-177/
http://www.adobe.com/support/security/bulletins/apsb13-17.html
http://technet.microsoft.com/en-us/security/advisory/2755801
http://support.microsoft.com/kb/2857645

Solution :

Install Microsoft KB2857645.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 6.9
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: Windows

Nessus Plugin ID: 67216 ()

Bugtraq ID: 61043
61045
61048

CVE ID: CVE-2013-3344
CVE-2013-3345
CVE-2013-3347

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now