Flash Player for Mac <= 126.96.36.199 Multiple Vulnerabilities (APSB14-17)
High Nessus Plugin ID 76415
SynopsisThe remote Windows host has a browser plugin that is affected by multiple vulnerabilities.
DescriptionAccording to its version, the instance of Flash Player installed on the remote Mac OS X host is equal or prior to 188.8.131.52. It is, therefore, affected by the following vulnerabilities :
- A CSRF bypassing Same Origin Policy vulnerability exists that could leak potentially sensitive data.
- Multiple unspecified errors exist that could allow unspecified security bypass attacks. (CVE-2014-0537, CVE-2014-0539)
SolutionUpgrade to Adobe Flash Player version 184.108.40.206 or later.
Alternatively, Adobe has made version 220.127.116.11 available for those installations that cannot be upgraded to 14.x.