FreeBSD : flash -- remote code execution (de6d01d5-9c44-11e6-ba67-0011d823eebd)

Critical Nessus Plugin ID 94347


The remote FreeBSD host is missing one or more security-related updates.


Adobe reports :

Adobe has released security updates for Adobe Flash Player for Windows, Macintosh, Linux and Chrome OS. These updates address a critical vulnerability that could potentially allow an attacker to take control of the affected system.

Adobe is aware of a report that an exploit for CVE-2016-7855 exists in the wild, and is being used in limited, targeted attacks against users running Windows versions 7, 8.1 and 10.


Update the affected packages.

See Also

Plugin Details

Severity: Critical

ID: 94347

File Name: freebsd_pkg_de6d01d59c4411e6ba670011d823eebd.nasl

Version: $Revision: 2.9 $

Type: local

Published: 2016/10/28

Modified: 2016/12/08

Dependencies: 12634

Risk Information

Risk Factor: Critical


Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C


Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:linux-c6-flashplugin, p-cpe:/a:freebsd:freebsd:linux-c7-flashplugin, p-cpe:/a:freebsd:freebsd:linux-f10-flashplugin, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2016/10/27

Vulnerability Publication Date: 2016/10/26

Reference Information

CVE: CVE-2016-7855