RedHatRHSA-2011:0511(RHSA-2011:0511) Critical: flash-plugin security update
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.079 Low
EPSS
Percentile
93.6%
The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash
Player web browser plug-in.
This update fixes multiple vulnerabilities in Adobe Flash Player. These
vulnerabilities are detailed on the Adobe security page APSB11-12, listed
in the References section.
Multiple security flaws were found in the way flash-plugin displayed
certain SWF content. An attacker could use these flaws to create a
specially-crafted SWF file that would cause flash-plugin to crash or,
potentially, execute arbitrary code when the victim loaded a page
containing the specially-crafted SWF content. (CVE-2011-0618,
CVE-2011-0619, CVE-2011-0620, CVE-2011-0621, CVE-2011-0622, CVE-2011-0623,
CVE-2011-0624, CVE-2011-0625, CVE-2011-0626, CVE-2011-0627)
This update also fixes an information disclosure flaw in flash-plugin.
(CVE-2011-0579)
All users of Adobe Flash Player should install this updated package, which
upgrades Flash Player to version 10.3.181.14.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 6 | i686 | flash-plugin | < 10.3.181.14-1.el6 | flash-plugin-10.3.181.14-1.el6.i686.rpm |
| RedHat | 5 | i386 | flash-plugin | < 10.3.181.14-1.el5 | flash-plugin-10.3.181.14-1.el5.i386.rpm |
Related
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.079 Low
EPSS
Percentile
93.6%