FreeBSD Local Security Checks : FreeBSD Ports: linux-flashplugin

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.69361

Categoría: FreeBSD Local Security Checks

Título: FreeBSD Ports: linux-flashplugin

Resumen: The remote host is missing an update to the system; as announced in the referenced advisory.

Descripción: Summary:
The remote host is missing an update to the system
as announced in the referenced advisory.

Vulnerability Insight:
The following packages are affected:

linux-flashplugin
linux-f8-flashplugin
linux-f10-flashplugin

CVE-2011-0609
Unspecified vulnerability in Adobe Flash Player 10.2.154.13 and
earlier on Windows, Mac OS X, Linux, and Solaris and 10.1.106.16 and
earlier on Android, and Authplay.dll (aka AuthPlayLib.bundle) in Adobe
Reader and Acrobat 9.x through 9.4.2 and 10.x through 10.0.1 on
Windows and Mac OS X, allows remote attackers to execute arbitrary
code or cause a denial of service (application crash) via crafted
Flash content, as demonstrated by a .swf file embedded in an Excel
spreadsheet, and as exploited in the wild in March 2011.

Solution:
Update your system with the appropriate patches or
software upgrades.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2011-0609
BugTraq ID: 46860
http://www.securityfocus.com/bid/46860
CERT/CC vulnerability note: VU#192052
http://www.kb.cert.org/vuls/id/192052
http://googlechromereleases.blogspot.com/2011/03/stable-and-beta-channel-updates_15.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14147
http://www.redhat.com/support/errata/RHSA-2011-0372.html
http://www.securitytracker.com/id?1025210
http://www.securitytracker.com/id?1025211
http://www.securitytracker.com/id?1025238
http://secunia.com/advisories/43751
http://secunia.com/advisories/43757
http://secunia.com/advisories/43772
http://secunia.com/advisories/43856
http://securityreason.com/securityalert/8152
SuSE Security Announcement: SUSE-SR:2011:005 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html
http://www.vupen.com/english/advisories/2011/0655
http://www.vupen.com/english/advisories/2011/0656
http://www.vupen.com/english/advisories/2011/0688
http://www.vupen.com/english/advisories/2011/0732
XForce ISS Database: adobe-flash-authplay-ce(66078)
https://exchange.xforce.ibmcloud.com/vulnerabilities/66078

Copyright Copyright (C) 2011 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.69361
Categoría:	FreeBSD Local Security Checks
Título:	FreeBSD Ports: linux-flashplugin
Resumen:	The remote host is missing an update to the system; as announced in the referenced advisory.
Descripción:	Summary: The remote host is missing an update to the system as announced in the referenced advisory. Vulnerability Insight: The following packages are affected: linux-flashplugin linux-f8-flashplugin linux-f10-flashplugin CVE-2011-0609 Unspecified vulnerability in Adobe Flash Player 10.2.154.13 and earlier on Windows, Mac OS X, Linux, and Solaris and 10.1.106.16 and earlier on Android, and Authplay.dll (aka AuthPlayLib.bundle) in Adobe Reader and Acrobat 9.x through 9.4.2 and 10.x through 10.0.1 on Windows and Mac OS X, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted Flash content, as demonstrated by a .swf file embedded in an Excel spreadsheet, and as exploited in the wild in March 2011. Solution: Update your system with the appropriate patches or software upgrades. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2011-0609 BugTraq ID: 46860 http://www.securityfocus.com/bid/46860 CERT/CC vulnerability note: VU#192052 http://www.kb.cert.org/vuls/id/192052 http://googlechromereleases.blogspot.com/2011/03/stable-and-beta-channel-updates_15.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14147 http://www.redhat.com/support/errata/RHSA-2011-0372.html http://www.securitytracker.com/id?1025210 http://www.securitytracker.com/id?1025211 http://www.securitytracker.com/id?1025238 http://secunia.com/advisories/43751 http://secunia.com/advisories/43757 http://secunia.com/advisories/43772 http://secunia.com/advisories/43856 http://securityreason.com/securityalert/8152 SuSE Security Announcement: SUSE-SR:2011:005 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html http://www.vupen.com/english/advisories/2011/0655 http://www.vupen.com/english/advisories/2011/0656 http://www.vupen.com/english/advisories/2011/0688 http://www.vupen.com/english/advisories/2011/0732 XForce ISS Database: adobe-flash-authplay-ce(66078) https://exchange.xforce.ibmcloud.com/vulnerabilities/66078
Copyright	Copyright (C) 2011 E-Soft Inc.