Adobe Flash Player and AIR Buffer Overflow Vulnerability

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-36442	2013-A-0001	SV-47851r2_rule	ECMT-1 ECMT-2 VIVM-1	High

Description
Adobe has released a security bulletin addressing a vulnerability in Flash Player and AIR. Adobe Flash Player is a multimedia application for Microsoft Windows, Macintosh, Linux and Solaris operating systems. To exploit this vulnerability, a remote attacker would entice a user to access a malicious web site or or open a file with malicious content. If successfully exploited, this vulnerability would allow an attacker to execute arbitrary code resulting in the compromise of affected systems. <br><br> At this time, there are no known exploits associated with this vulnerability; USCYBERCOM is not aware of any DoD related incidents.<br><br>

Description

Adobe has released a security bulletin addressing a vulnerability in Flash Player and AIR. Adobe Flash Player is a multimedia application for Microsoft Windows, Macintosh, Linux and Solaris operating systems. To exploit this vulnerability, a remote attacker would entice a user to access a malicious web site or or open a file with malicious content. If successfully exploited, this vulnerability would allow an attacker to execute arbitrary code resulting in the compromise of affected systems. <br><br> At this time, there are no known exploits associated with this vulnerability; USCYBERCOM is not aware of any DoD related incidents.<br><br>

STIG	Date
Apple iOS 6 Interim Security Configuration Guide (ISCG)	2013-01-17

Details

Check Text ( None )
None

Fix Text (None)
None