FreeBSD Local Security Checks : FreeBSD Ports: linux-flashplugin

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.68102

Categoría: FreeBSD Local Security Checks

Título: FreeBSD Ports: linux-flashplugin

Resumen: The remote host is missing an update to the system; as announced in the referenced advisory.

Descripción: Summary:
The remote host is missing an update to the system
as announced in the referenced advisory.

Vulnerability Insight:
The following packages are affected:

linux-flashplugin

linux-f8-flashplugin

linux-f10-flashplugin

CVE-2010-2884
Unspecified vulnerability in Adobe:

Flash Player 10.1.82.76 and earlier for Windows, Macintosh, Linux, Solaris

Flash Player 10.1.92.10 for Android

Reader 9.3.4 for Windows, Macintosh and UNIX

Acrobat 9.3.4 and earlier for Windows and Macintosh

allows remote attackers to cause a denial of service (crash) and execute arbitrary code via
unknown vectors, as exploited in the wild in September 2010.

Solution:
Update your system with the appropriate patches or
software upgrades.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2010-2884
http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html
Cert/CC Advisory: TA10-263A
http://www.us-cert.gov/cas/techalerts/TA10-263A.html
Cert/CC Advisory: TA10-279A
http://www.us-cert.gov/cas/techalerts/TA10-279A.html
CERT/CC vulnerability note: VU#275289
http://www.kb.cert.org/vuls/id/275289
http://security.gentoo.org/glsa/glsa-201101-08.xml
http://security.gentoo.org/glsa/glsa-201101-09.xml
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6852
http://www.redhat.com/support/errata/RHSA-2010-0706.html
http://www.redhat.com/support/errata/RHSA-2010-0743.html
http://secunia.com/advisories/41434
http://secunia.com/advisories/41435
http://secunia.com/advisories/41443
http://secunia.com/advisories/41526
http://secunia.com/advisories/43025
http://secunia.com/advisories/43026
SuSE Security Announcement: SUSE-SA:2010:048 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00001.html
SuSE Security Announcement: SUSE-SR:2010:019 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html
http://www.vupen.com/english/advisories/2010/2348
http://www.vupen.com/english/advisories/2010/2349
http://www.vupen.com/english/advisories/2011/0191
http://www.vupen.com/english/advisories/2011/0192
XForce ISS Database: adobe-flash-content-code-execution(61771)
https://exchange.xforce.ibmcloud.com/vulnerabilities/61771

Copyright Copyright (C) 2010 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.68102
Categoría:	FreeBSD Local Security Checks
Título:	FreeBSD Ports: linux-flashplugin
Resumen:	The remote host is missing an update to the system; as announced in the referenced advisory.
Descripción:	Summary: The remote host is missing an update to the system as announced in the referenced advisory. Vulnerability Insight: The following packages are affected: linux-flashplugin linux-f8-flashplugin linux-f10-flashplugin CVE-2010-2884 Unspecified vulnerability in Adobe: Flash Player 10.1.82.76 and earlier for Windows, Macintosh, Linux, Solaris Flash Player 10.1.92.10 for Android Reader 9.3.4 for Windows, Macintosh and UNIX Acrobat 9.3.4 and earlier for Windows and Macintosh allows remote attackers to cause a denial of service (crash) and execute arbitrary code via unknown vectors, as exploited in the wild in September 2010. Solution: Update your system with the appropriate patches or software upgrades. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-2884 http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html Cert/CC Advisory: TA10-263A http://www.us-cert.gov/cas/techalerts/TA10-263A.html Cert/CC Advisory: TA10-279A http://www.us-cert.gov/cas/techalerts/TA10-279A.html CERT/CC vulnerability note: VU#275289 http://www.kb.cert.org/vuls/id/275289 http://security.gentoo.org/glsa/glsa-201101-08.xml http://security.gentoo.org/glsa/glsa-201101-09.xml https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6852 http://www.redhat.com/support/errata/RHSA-2010-0706.html http://www.redhat.com/support/errata/RHSA-2010-0743.html http://secunia.com/advisories/41434 http://secunia.com/advisories/41435 http://secunia.com/advisories/41443 http://secunia.com/advisories/41526 http://secunia.com/advisories/43025 http://secunia.com/advisories/43026 SuSE Security Announcement: SUSE-SA:2010:048 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00001.html SuSE Security Announcement: SUSE-SR:2010:019 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html http://www.vupen.com/english/advisories/2010/2348 http://www.vupen.com/english/advisories/2010/2349 http://www.vupen.com/english/advisories/2011/0191 http://www.vupen.com/english/advisories/2011/0192 XForce ISS Database: adobe-flash-content-code-execution(61771) https://exchange.xforce.ibmcloud.com/vulnerabilities/61771
Copyright	Copyright (C) 2010 E-Soft Inc.