|
|
Family: Gentoo Local Security Checks --> Category: infos
[GLSA-200603-20] Macromedia Flash Player: Arbitrary code execution Vulnerability Scan
Vulnerability Scan Summary
Macromedia Flash Player: Arbitrary code execution
Detailed Explanation for this Vulnerability Test
The remote host is affected by the vulnerability described in GLSA-200603-20
(Macromedia Flash Player: Arbitrary code execution)
The Macromedia Flash Player contains multiple unspecified
vulnerabilities.
Impact
A possible hacker serving a maliciously crafted SWF file could entice a
user to view the SWF file and execute arbitrary code on the user's
machine.
Workaround
There is no known workaround at this time.
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0024
http://www.macromedia.com/devnet/security/security_zone/apsb06-03.html
Solution:
All Macromedia Flash Player users should upgrade to the latest
version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=net-www/netscape-flash-7.0.63"
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|
