PT-2016-2391 · Adobe+3 · Flash Player+3
Published
2016-07-12
·
Updated
2023-01-26
·
CVE-2016-4232
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Adobe Flash Player versions prior to 18.0.0.366
Adobe Flash Player versions 19.x through 22.x before 22.0.0.209 on Windows and OS X
Adobe Flash Player versions prior to 11.2.202.632 on Linux
Description
The issue is related to the lack of protection for internal data in the Flash Player platform. It allows a remote attacker to obtain confidential information from the process memory.
Recommendations
For Adobe Flash Player versions prior to 18.0.0.366, update to version 18.0.0.366 or later.
For Adobe Flash Player versions 19.x through 22.x before 22.0.0.209 on Windows and OS X, update to version 22.0.0.209 or later.
For Adobe Flash Player versions prior to 11.2.202.632 on Linux, update to version 11.2.202.632 or later.
Exploit
Fix
Memory Leak
Information Disclosure
Type Confusion
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Alt Linux
Flash Player
Red Hat
Suse