Flash Player <= 11.7.700.272 / 18.104.22.168 Multiple Vulnerabilities (APSB14-09)
High Nessus Plugin ID 73433
SynopsisThe remote Windows host has a browser plugin that is affected by multiple vulnerabilities.
DescriptionAccording to its version, the instance of Flash Player installed on the remote Windows host is equal or prior to 11.7.700.272 / 11.8.x / 11.9.x / 22.214.171.124. It is, therefore, potentially affected multiple vulnerabilities :
- A use-after-free error exists that could lead to arbitrary code execution. (CVE-2014-0506)
- A buffer overflow error exists that could lead to arbitrary code execution. (CVE-2014-0507)
- An unspecified error exists that could allow a security bypass leading to information disclosure.
- An unspecified error exists that could allow cross- site scripting attacks. (CVE-2014-0509)
SolutionUpgrade to Adobe Flash Player version 11.7.700.275 / 126.96.36.199 or later.