PT-2016-2979 · Adobe+3 · Flash Player+3
Publicado
2016-10-12
·
Atualizado
2019-05-16
·
CVE-2016-4286
CVSS v2.0
10
Alta
| Vetor | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Adobe Flash Player versions prior to 18.0.0.382
Adobe Flash Player versions 19.x through 23.x prior to 23.0.0.185 on Windows and OS X
Adobe Flash Player versions prior to 11.2.202.637 on Linux
Description
The issue allows attackers to bypass intended access restrictions. It is related to insufficient access control in the Flash Player platform. Exploitation of this issue may enable a remote attacker to execute arbitrary code or cause a denial of service (memory corruption).
Recommendations
For Adobe Flash Player versions prior to 18.0.0.382, update to version 18.0.0.382 or later.
For Adobe Flash Player versions 19.x through 23.x prior to 23.0.0.185 on Windows and OS X, update to version 23.0.0.185 or later.
For Adobe Flash Player versions prior to 11.2.202.637 on Linux, update to version 11.2.202.637 or later.
Correção
Improper Access Control
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Alt Linux
Flash Player
Red Hat
Suse