Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2016:1865
HistorySep 14, 2016 - 12:00 a.m.

(RHSA-2016:1865) Critical: flash-plugin security update

2016-09-1400:00:00
access.redhat.com
13

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.712 High

EPSS

Percentile

98.0%

JSON

The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash
Player web browser plug-in.

This update upgrades Flash Player to version 11.2.202.635.

Security Fix(es):

  • This update fixes multiple vulnerabilities in Adobe Flash Player. These
    vulnerabilities, detailed in the Adobe Security Bulletin listed in the
    References section, could allow an attacker to create a specially crafted SWF
    file that would cause flash-plugin to crash, execute arbitrary code, or disclose
    sensitive information when the victim loaded a page containing the malicious SWF
    content. (CVE-2016-4271, CVE-2016-4272, CVE-2016-4274, CVE-2016-4275,
    CVE-2016-4276, CVE-2016-4277, CVE-2016-4278, CVE-2016-4279, CVE-2016-4280,
    CVE-2016-4281, CVE-2016-4282, CVE-2016-4283, CVE-2016-4284, CVE-2016-4285,
    CVE-2016-4287, CVE-2016-6921, CVE-2016-6922, CVE-2016-6923, CVE-2016-6924,
    CVE-2016-6925, CVE-2016-6926, CVE-2016-6927, CVE-2016-6929, CVE-2016-6930,
    CVE-2016-6931, CVE-2016-6932)
OSVersionArchitecturePackageVersionFilename
RedHat5i386flash-plugin< 11.2.202.635-1.el5_11flash-plugin-11.2.202.635-1.el5_11.i386.rpm
RedHat6i686flash-plugin< 11.2.202.635-1.el6_8flash-plugin-11.2.202.635-1.el6_8.i686.rpm

Related

archlinux 2
altlinux 2
openvas 8
kaspersky 1
nessus 8
mscve 1
mageia 1
suse 3
redhatcve 26
prion 26
ubuntucve 26
cve 26
gentoo 1
checkpoint_advisories 13
zdt 1
zdi 2
archlinux
archlinux
flashplugin: multiple issues
2016-09-15 00:00:00
lib32-flashplugin: multiple issues
2016-09-15 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 6 package adobe-flash-player version 3:11-alt65
2016-09-22 00:00:00
Security fix for the ALT Linux 7 package adobe-flash-player version 3:11-alt65
2016-09-20 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2016-0315)
2022-01-28 00:00:00
Adobe Flash Player Security Update (APSB16-29) - Linux
2016-09-14 00:00:00
Microsoft IE And Microsoft Edge Flash Player Multiple Vulnerabilities (3188128)
2017-03-17 00:00:00
kaspersky
kaspersky
KLA10868 Multiple vulnerabilities in Adobe Flash Player
2016-09-13 00:00:00
nessus
nessus
MS16-117: Security Update for Adobe Flash Player (3188128)
2016-09-13 00:00:00
RHEL 5 / 6 : flash-plugin (RHSA-2016:1865)
2016-09-15 00:00:00
Adobe Flash Player for Mac <= 22.0.0.211 Multiple Vulnerabilities (APSB16-29)
2016-09-13 00:00:00
mscve
mscve
September 2016 Adobe Flash Security Update
2016-09-13 07:00:00
mageia
mageia
Updated flash-player-plugin packages fix security vulnerability
2016-09-21 23:38:22
suse
suse
Security update for flash-player (important)
2016-09-15 14:11:35
Recommended update for flash-player (important)
2016-09-25 12:10:38
Recommended update for flash-player (important)
2016-09-14 21:08:55
redhatcve
redhatcve
CVE-2016-4283
2016-09-13 20:50:20
CVE-2016-4280
2016-09-13 20:50:06
CVE-2016-4272
2016-09-13 20:49:16
prion
prion
Memory corruption
2016-09-14 18:59:00
Memory corruption
2016-09-14 18:59:00
Design/Logic Flaw
2016-09-14 18:59:00
ubuntucve
ubuntucve
CVE-2016-4276
2016-09-14 00:00:00
CVE-2016-4282
2016-09-14 00:00:00
CVE-2016-6924
2016-09-14 00:00:00
cve
cve
CVE-2016-4282
2016-09-14 18:59:00
CVE-2016-6924
2016-09-14 18:59:00
CVE-2016-6921
2016-09-14 18:59:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2016-10-29 00:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Memory Corruption (APSB16-29: CVE-2016-4275)
2016-09-18 00:00:00
Adobe Flash Player Memory Corruption (APSB16-29: CVE-2016-4284)
2016-09-13 00:00:00
Adobe Flash Player Security Bypass (APSB16-29: CVE-2016-4271)
2016-09-13 00:00:00
zdt
zdt
Adobe Flash - Crash When Freeing Memory After AVC decoding Exploit
2016-09-23 00:00:00
zdi
zdi
Adobe Flash TextFormat Memory Corruption Remote Code Execution Vulnerability
2016-09-16 00:00:00
Adobe Flash SWF Out-Of-Bounds Read Remote Code Execution Vulnerability
2016-09-16 00:00:00

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.712 High

EPSS

Percentile

98.0%

JSON
Related for RHSA-2016:1865
archlinux2altlinux2openvas8kaspersky1nessus8mscve1mageia1suse3redhatcve26prion26ubuntucve26cve26gentoo1checkpoint_advisories13zdt1zdi2