FreeBSD : flash -- multiple vulnerabilities (547fbd98-8b1f-11e5-b48b-bcaec565249c)

This script is Copyright (C) 2015-2017 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing one or more security-related
updates.

Description :

Adobe reports :

These updates resolve a type confusion vulnerability that could lead
to code execution (CVE-2015-7659).

These updates resolve a security bypass vulnerability that could be
exploited to write arbitrary data to the file system under user
permissions (CVE-2015-7662).

These updates resolve use-after-free vulnerabilities that could lead
to code execution (CVE-2015-7651, CVE-2015-7652, CVE-2015-7653,
CVE-2015-7654, CVE-2015-7655, CVE-2015-7656, CVE-2015-7657,
CVE-2015-7658, CVE-2015-7660, CVE-2015-7661, CVE-2015-7663,
CVE-2015-8042, CVE-2015-8043, CVE-2015-8044, CVE-2015-8046).

See also :

https://helpx.adobe.com/security/products/flash-player/apsb15-28.html
http://www.nessus.org/u?8c94cd26

Solution :

Update the affected packages.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now