Multiple Vulnerabilities in Adobe Flash Player and AIR

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-36792	2013-A-0032	SV-48549r3_rule	ECMT-1 ECMT-2 VIVM-1	High

Description
Adobe has released multiple security bulletins addressing vulnerabilities in Flash Player. Adobe Flash Player is a multimedia application for Microsoft Windows, Macintosh, Linux and Solaris operating systems. To exploit these vulnerabilities, a remote attacker would entice a user to access a malicious web site or open a file with malicious content. If successfully exploited, these vulnerabilities would allow an attacker to execute arbitrary code or cause denial of service conditions resulting in the compromise of affected systems. <br><br> At this time, these vulnerabilities are actively being exploited in the wild; USCYBERCOM is not aware of any DoD related incidents.

Description

Adobe has released multiple security bulletins addressing vulnerabilities in Flash Player. Adobe Flash Player is a multimedia application for Microsoft Windows, Macintosh, Linux and Solaris operating systems. To exploit these vulnerabilities, a remote attacker would entice a user to access a malicious web site or open a file with malicious content. If successfully exploited, these vulnerabilities would allow an attacker to execute arbitrary code or cause denial of service conditions resulting in the compromise of affected systems. <br><br> At this time, these vulnerabilities are actively being exploited in the wild; USCYBERCOM is not aware of any DoD related incidents.

STIG	Date
BlackBerry Playbook OS (NEA mode) Security Technical Implementation Guide (STIG)	2013-03-14

Details

Check Text ( None )
None

Fix Text (None)
None