These vulnerabilities, detailed in the Adobe Security Bulletin listed in the References section, could allow an attacker to create a specially crafted SWF file that would cause flash-plugin to crash, execute arbitrary code, or disclose sensitive information when the victim loaded a page containing the malicious SWF content. Security Fix(es) : * This update fixes multiple vulnerabilities in Adobe Flash Player. This update upgrades Flash Player to version 27.0.0.130. The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. Sadly, Vmware announced that this is a known issue and there is no solution for at the moment. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. With the latest Adobe Flash Player Plugin, we all have encountered Shockwave Crashes and most of the users forced to use HTML5 web client for daily tasks. Red Hat Product Security has rated this update as having a security impact of Critical. Description An update for flash-plugin is now available for Red Hat Enterprise Linux 6 Supplementary. Synopsis The remote Red Hat host is missing a security update.
0 Comments
Leave a Reply. |