openSUSE Security Update : flash-player (openSUSE-SU-2011:0637-1)

This script is Copyright (C) 2014 Tenable Network Security, Inc.


Synopsis :

The remote openSUSE host is missing a security update.

Description :

A critical vulnerability has been identified in Adobe Flash Player
10.3.181.23 and earlier versions for Windows, Macintosh, Linux and
Solaris, and Adobe Flash Player 10.3.185.23 and earlier versions for
Android. This memory corruption vulnerability (CVE-2011-2110) could
cause a crash and potentially allow an attacker to take control of the
affected system. There are reports that this vulnerability is being
exploited in the wild in targeted attacks via malicious Web pages.

See also :

http://lists.opensuse.org/opensuse-updates/2011-06/msg00027.html
https://bugzilla.novell.com/show_bug.cgi?id=699942

Solution :

Update the affected flash-player package.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
Public Exploit Available : true

Family: SuSE Local Security Checks

Nessus Plugin ID: 75500 ()

Bugtraq ID:

CVE ID: CVE-2011-2110

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now