(CVE-2016-7857, CVE-2016-7858, CVE-2016-7859, CVE-2016-7862, CVE-2016-7863, CVE-2016-7864) - Multiple type confusion errors exist that allow an unauthenticated, remote attacker to execute arbitrary code by convincing a user to visit a website containing specially crafted Flash content. It is, therefore, affected by multiple vulnerabilities : - Multiple use-after-free errors exist that allow an unauthenticated, remote attacker to execute arbitrary code by convincing a user to visit a website containing specially crafted Flash content. Description The version of Adobe Flash Player installed on the remote Windows host is equal or prior to version 23.0.0.205. Synopsis The remote Windows host has a browser plugin installed that is affected by a multiple vulnerabilities. Severity display preferences can be toggled in the settings dropdown.
Plugins that do not have a CVSS v3 score will fall back to CVSS v2 for calculating severity. The calculated severity for Plugins has been updated to use CVSS v3 by default.
0 kommentar(er)
