CVE-2016-6987

Name of the Vulnerable Software and Affected Versions Adobe Flash Player versions prior to 18.0.0.382 Adobe Flash Player versions 19.x through 23.x before 23.0.0.185 Adobe Flash Player version 11.2.202.637 and earlier on Linux

Description The issue is related to a use-after-free vulnerability in Adobe Flash Player, allowing attackers to execute arbitrary code via unspecified vectors. This can be exploited by a remote attacker to gain control over the system. The estimated number of potentially affected devices worldwide is not specified.

Recommendations For Adobe Flash Player versions prior to 18.0.0.382, update to version 18.0.0.382 or later. For Adobe Flash Player versions 19.x through 23.x, update to version 23.0.0.185 or later. For Adobe Flash Player version 11.2.202.637 and earlier on Linux, update to version 11.2.202.637 or later. As a temporary workaround, consider disabling the sendEvent function in Adobe Flash Accessibility until a patch is available.