Red Hat Local Security Checks : RedHat Security Advisory RHSA-2012:0349

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.71883

Categoría: Red Hat Local Security Checks

Título: RedHat Security Advisory RHSA-2012:0349

Resumen: NOSUMMARY

Descripción: Description:
The remote host is missing updates announced in
advisory RHSA-2012:0349.

The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash
Player web browser plug-in.

This update fixes two vulnerabilities in Adobe Flash Player. These
vulnerabilities are detailed on the Adobe security page APSB12-05, listed
in the References section.

A flaw was found in the way flash-plugin displayed certain SWF content. An
attacker could use this flaw to create a specially-crafted SWF file that
would cause flash-plugin to crash or, potentially, execute arbitrary code
when the victim loaded a page containing the specially-crafted SWF content.
(CVE-2012-0768)

A flaw in flash-plugin could allow an attacker to obtain sensitive
information if a victim were tricked into visiting a specially-crafted web
page. (CVE-2012-0769)

All users of Adobe Flash Player should install this updated package, which
upgrades Flash Player to version 10.3.183.16.

Solution:
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

http://rhn.redhat.com/errata/RHSA-2012-0349.html
http://www.adobe.com/support/security/bulletins/apsb12-05.html

Risk factor : High

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2012-0768
http://security.gentoo.org/glsa/glsa-201204-07.xml
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15058
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15922
http://secunia.com/advisories/48819
SuSE Security Announcement: SUSE-SU-2012:0332 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00006.html
SuSE Security Announcement: openSUSE-SU-2012:0331 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00005.html
Common Vulnerability Exposure (CVE) ID: CVE-2012-0769
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14828
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16212

Copyright Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.71883
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2012:0349
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2012:0349. The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. This update fixes two vulnerabilities in Adobe Flash Player. These vulnerabilities are detailed on the Adobe security page APSB12-05, listed in the References section. A flaw was found in the way flash-plugin displayed certain SWF content. An attacker could use this flaw to create a specially-crafted SWF file that would cause flash-plugin to crash or, potentially, execute arbitrary code when the victim loaded a page containing the specially-crafted SWF content. (CVE-2012-0768) A flaw in flash-plugin could allow an attacker to obtain sensitive information if a victim were tricked into visiting a specially-crafted web page. (CVE-2012-0769) All users of Adobe Flash Player should install this updated package, which upgrades Flash Player to version 10.3.183.16. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2012-0349.html http://www.adobe.com/support/security/bulletins/apsb12-05.html Risk factor : High
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2012-0768 http://security.gentoo.org/glsa/glsa-201204-07.xml https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15058 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15922 http://secunia.com/advisories/48819 SuSE Security Announcement: SUSE-SU-2012:0332 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00006.html SuSE Security Announcement: openSUSE-SU-2012:0331 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00005.html Common Vulnerability Exposure (CVE) ID: CVE-2012-0769 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14828 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16212
Copyright	Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com