Oval Definition:oval:org.cisecurity:def:1165
Revision Date:2016-10-21Version:25
Title:Vulnerability in Adobe Flash Player 21.0.0.197 and earlier - CVE-2016-1019
Description:Adobe Flash Player 21.0.0.197 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unspecified vectors, as exploited in the wild in April 2016.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):APSA16-01
APSB16-10
CVE-2016-1019
Platform(s):Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows 8.1
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows Vista
Microsoft Windows XP
Product(s):ActiveX Control
Adobe AIR
Adobe Flash Player
Pepper Flash
Definition Synopsis
  • Adobe Flash Player is installed + version (ESR)
  • Adobe Flash Player is installed
  • AND Check if Adobe Flash Player version is less than 18.0.0.343
  • OR Adobe Flash Player is installed + version
  • Adobe Flash Player is installed
  • AND Check for Adobe Flash Player version
  • Check if Adobe Flash Player version is less than 21.0.0.213
  • AND Check if Adobe Flash Player version is greater than or equal 19.0.0.0
  • OR Pepper Flash for Google Chrome version
  • Google Chrome is installed
  • AND Check if Pepper Flash for Google Chrome version is less than 21.0.0.213
  • OR ActiveX Control is installed + Flash*.ocx version
  • ActiveX Control is installed
  • AND Check for Flash*.ocx file version
  • Check if Flash*.ocx version is less than 18.0.0.343
  • OR Check for file version
  • Check if Flash*.ocx version is less than 21.0.0.213
  • AND Check if Flash*.ocx version is greater than or equal 19.0.0.0
  • OR Adobe AIR is installed + affected version
  • Adobe AIR is installed
  • AND Check if Adobe AIR version is less than 21.0.0.198
    • BACK