PT-2016-2979 · Adobe+3 · Flash Player+3
Published
2016-10-12
·
Updated
2019-05-16
·
CVE-2016-4286
CVSS v2.0
10
High
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Adobe Flash Player versions prior to 18.0.0.382
Adobe Flash Player versions 19.x through 23.x prior to 23.0.0.185 on Windows and OS X
Adobe Flash Player versions prior to 11.2.202.637 on Linux
Description
The issue allows attackers to bypass intended access restrictions. It is related to insufficient access control in the Flash Player platform. Exploitation of this issue may enable a remote attacker to execute arbitrary code or cause a denial of service (memory corruption).
Recommendations
For Adobe Flash Player versions prior to 18.0.0.382, update to version 18.0.0.382 or later.
For Adobe Flash Player versions 19.x through 23.x prior to 23.0.0.185 on Windows and OS X, update to version 23.0.0.185 or later.
For Adobe Flash Player versions prior to 11.2.202.637 on Linux, update to version 11.2.202.637 or later.
Fix
Improper Access Control
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Flash Player
Red Hat
Suse