Test ID:	1.3.6.1.4.1.25623.1.0.56473
Category:	SuSE Local Security Checks
Title:	SuSE Security Advisory SUSE-SA:2006:015 (flash-player)
Summary:	SuSE Security Advisory SUSE-SA:2006:015 (flash-player)
Description:	The remote host is missing updates announced in advisory SUSE-SA:2006:015. A critical security vulnerability has been identified in the Adobe Macromedia Flash Player that allows an attacker who successfully exploits these vulnerabilities to take control of the application running the flash player. A malicious SWF must be loaded in the Flash Player by the user for an attacker to exploit these vulnerabilities. This issue is tracked by the Mitre CVE ID CVE-2006-0024. Solution: Update your system with the packages as indicated in the referenced security advisory. http://www.securityspace.com/smysecure/catid.html?in=SUSE-SA:2006:015 Risk factor : High
Cross-Ref:	BugTraq ID: 17951 BugTraq ID: 17106 Common Vulnerability Exposure (CVE) ID: CVE-2006-0024 http://lists.apple.com/archives/security-announce/2006/May/msg00003.html http://lists.apple.com/archives/security-announce/2007/Dec/msg00002.html http://www.gentoo.org/security/en/glsa/glsa-200603-20.xml Microsoft Security Bulletin: MS06-020 http://www.microsoft.com/technet/security/bulletin/ms06-020.mspx http://www.redhat.com/support/errata/RHSA-2006-0268.html SuSE Security Announcement: SUSE-SA:2006:015 (Google Search) http://www.novell.com/linux/security/advisories/2006_15_flashplayer.html Cert/CC Advisory: TA06-075A http://www.us-cert.gov/cas/techalerts/TA06-075A.html Cert/CC Advisory: TA06-129A http://www.us-cert.gov/cas/techalerts/TA06-129A.html Cert/CC Advisory: TA06-132A http://www.us-cert.gov/cas/techalerts/TA06-132A.html Cert/CC Advisory: TA07-352A http://www.us-cert.gov/cas/techalerts/TA07-352A.html CERT/CC vulnerability note: VU#945060 http://www.kb.cert.org/vuls/id/945060 http://www.securityfocus.com/bid/17106 http://www.securityfocus.com/bid/17951 http://www.vupen.com/english/advisories/2006/0952 http://www.vupen.com/english/advisories/2006/1744 http://www.vupen.com/english/advisories/2006/1779 http://www.vupen.com/english/advisories/2006/1262 http://www.vupen.com/english/advisories/2007/4238 http://www.osvdb.org/23908 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1894 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1922 http://securitytracker.com/id?1015770 http://secunia.com/advisories/19218 http://secunia.com/advisories/19259 http://secunia.com/advisories/19198 http://secunia.com/advisories/19328 http://secunia.com/advisories/20077 http://secunia.com/advisories/20045 http://secunia.com/advisories/28136 XForce ISS Database: macromedia-swf-code-execution(25005) http://xforce.iss.net/xforce/xfdb/25005
Copyright	Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com

This is only one of 32582 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.

New User Registration Email: UserID: Passwd: Please email me your monthly newsletters, informing the latest services, improvements & surveys. Please email me a vulnerability test announcement whenever a new test is added.     Privacy

Registered User Login   UserID:     Passwd:     Forgot userid or passwd? Email/Userid: