Test ID:	1.3.6.1.4.1.25623.1.1.10.2017.0339
Category:	Mageia Linux Local Security Checks
Title:	Mageia: Security Advisory (MGASA-2017-0339)
Summary:	The remote host is missing an update for the 'flash-player-plugin' package(s) announced via the MGASA-2017-0339 advisory.
Description:	Summary: The remote host is missing an update for the 'flash-player-plugin' package(s) announced via the MGASA-2017-0339 advisory. Vulnerability Insight: Adobe Flash Player 27.0.0.130 contains fixes to critical security vulnerabilities found in earlier versions that could potentially allow an attacker to take control of the affected system. This update addresses two memory corruption vulnerabilities that could lead to code execution (CVE-2017-11281, CVE-2017-11282). Affected Software/OS: 'flash-player-plugin' package(s) on Mageia 5, Mageia 6. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2017-11281 BugTraq ID: 100710 http://www.securityfocus.com/bid/100710 https://www.exploit-db.com/exploits/42781/ https://www.exploit-db.com/exploits/42782/ https://security.gentoo.org/glsa/201709-16 https://www.youtube.com/watch?v=CvmnUeza9zw RedHat Security Advisories: RHSA-2017:2702 https://access.redhat.com/errata/RHSA-2017:2702 http://www.securitytracker.com/id/1039314 Common Vulnerability Exposure (CVE) ID: CVE-2017-11282 BugTraq ID: 100716 http://www.securityfocus.com/bid/100716 https://www.exploit-db.com/exploits/42783/ http://packetstormsecurity.com/files/144332/Adobe-Flash-appleToRange-Out-Of-Bounds-Read.html https://bugs.chromium.org/p/project-zero/issues/detail?id=1323 https://www.youtube.com/watch?v=6iZnIQbRf5M
Copyright	Copyright (C) 2022 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.