FreeBSD : flash -- multiple vulnerabilities (84c7ea88-bf04-4bdc-973b-36744bf540ab)

This script is Copyright (C) 2015-2017 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing one or more security-related
updates.

Description :

Adobe reports :

These updates resolve a type confusion vulnerability that could lead
to code execution (CVE-2015-8644).

These updates resolve an integer overflow vulnerability that could
lead to code execution (CVE-2015-8651).

These updates resolve use-after-free vulnerabilities that could lead
to code execution (CVE-2015-8634, CVE-2015-8635, CVE-2015-8638,
CVE-2015-8639, CVE-2015-8640, CVE-2015-8641, CVE-2015-8642,
CVE-2015-8643, CVE-2015-8646, CVE-2015-8647, CVE-2015-8648,
CVE-2015-8649, CVE-2015-8650).

These updates resolve memory corruption vulnerabilities that could
lead to code execution (CVE-2015-8459, CVE-2015-8460, CVE-2015-8636,
CVE-2015-8645).

See also :

https://helpx.adobe.com/security/products/flash-player/apsb16-01.html
http://www.nessus.org/u?281261fd

Solution :

Update the affected packages.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
Public Exploit Available : true

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now