Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Flash Player <= 16.0.0.257 Information Disclosure (APSB15-02)

Medium

Synopsis

The remote host is running an outdated version of Adobe Flash Player for Internet Explorer which is affected by an information disclosure vulnerability.

Description

According to its version number, the instance of Flash Player on the remote host is exposed to an information disclosure vulnerability due a flaw that can allow bypassing of memory randomization mitigations, aiding in further attacks.

Solution

Upgrade to Adobe Flash Player version 16.0.0.287 or later.\n\nAlternatively, Adobe has made version 13.0.0.262 available for those installs that cannot be upgraded to 16.x.