Test ID:	1.3.6.1.4.1.25623.1.0.67751
Category:	Red Hat Local Security Checks
Title:	RedHat Security Advisory RHSA-2010:0623
Summary:	NOSUMMARY
Description:	Description: The remote host is missing updates announced in advisory RHSA-2010:0623. The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. This update fixes multiple vulnerabilities in Adobe Flash Player. These vulnerabilities are detailed on the Adobe security page APSB10-16, listed in the References section. Multiple security flaws were found in the way flash-plugin displayed certain SWF content. An attacker could use these flaws to create a specially-crafted SWF file that would cause flash-plugin to crash or, potentially, execute arbitrary code when the victim loaded a page containing the specially-crafted SWF content. (CVE-2010-0209, CVE-2010-2213, CVE-2010-2214, CVE-2010-2216) A clickjacking flaw was discovered in flash-plugin. A specially-crafted SWF file could trick a user into unintentionally or mistakenly clicking a link or a dialog. (CVE-2010-2215) All users of Adobe Flash Player should install this updated package, which upgrades Flash Player to version 10.1.82.76. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2010-0623.html http://www.redhat.com/security/updates/classification/#critical http://www.adobe.com/support/security/bulletins/apsb10-16.html Risk factor : Critical CVSS Score: 9.3
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2010-0209 http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html http://security.gentoo.org/glsa/glsa-201101-09.xml HPdes Security Advisory: HPSBMA02592 http://marc.info/?l=bugtraq&m=128767780602751&w=2 HPdes Security Advisory: SSRT100300 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11461 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16106 http://www.securitytracker.com/id?1024621 http://secunia.com/advisories/43026 http://www.vupen.com/english/advisories/2011/0192 Common Vulnerability Exposure (CVE) ID: CVE-2010-2213 BugTraq ID: 42364 http://www.securityfocus.com/bid/42364 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10983 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16020 Common Vulnerability Exposure (CVE) ID: CVE-2010-2214 BugTraq ID: 42358 http://www.securityfocus.com/bid/42358 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11971 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15966 Common Vulnerability Exposure (CVE) ID: CVE-2010-2215 BugTraq ID: 42361 http://www.securityfocus.com/bid/42361 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11532 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16192 Common Vulnerability Exposure (CVE) ID: CVE-2010-2216 BugTraq ID: 42362 http://www.securityfocus.com/bid/42362 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11977 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16177
Copyright	Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.