Flash Player <= Multiple Vulnerabilities (APSB14-16)

This script is Copyright (C) 2014-2017 Tenable Network Security, Inc.

Synopsis :

The remote Windows host has a browser plugin that is potentially
affected by multiple vulnerabilities.

Description :

According to its version, the instance of Flash Player installed on
the remote Windows host is equal or prior to It is,
therefore, affected by the following vulnerabilities :

- Multiple, unspecified errors exist that could allow
cross-site scripting attacks. (CVE-2014-0531,
CVE-2014-0532, CVE-2014-0533)

- Multiple, unspecified errors exist that could allow
unspecified security bypass attacks. (CVE-2014-0534,

- An unspecified memory corruption issue exists that
could allow arbitrary code execution. (CVE-2014-0536)

See also :


Solution :

Upgrade to Adobe Flash Player version or later.

Alternatively, Adobe has made version available for those
installations that cannot be upgraded to 14.x.

Risk factor :

High / CVSS Base Score : 9.3
CVSS Temporal Score : 8.1
Public Exploit Available : false

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now