| Revision Date: | 2016-12-23 | Version: | 16 |
| Title: | Stack-based buffer overflow in Adobe Flash Player before 13.0.0.259 and 14.x and 15.x before 15.0.0.246 – CVE-2014-9163 |
| Description: | Stack-based buffer overflow in Adobe Flash Player before 13.0.0.259 and 14.x and 15.x before 15.0.0.246 on Windows and OS X and before 11.2.202.425 on Linux allows attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in December 2014. |
| Family: | windows | Class: | vulnerability |
| Status: | ACCEPTED | Reference(s): | CVE-2014-9163
|
| Platform(s): | Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows 8.1
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows Vista
Microsoft Windows XP
| Product(s): | ActiveX Control
Adobe Flash Player
Pepper Flash
|
| Definition Synopsis |
| Adobe Flash Player is installed + version Adobe Flash Player is installed
AND Vulnerable version of Adobe Flash Player
Check if Adobe Flash Player (ESR) version is less than 13.0.0.259
OR Check for Adobe Flash Player version
Check if Adobe Flash Player version is less than 16.0.0.235
AND Check if Adobe Flash Player version is greater than or equal 14.0.0.0
OR Pepper Flash for Google Chrome version
Google Chrome is installed
AND Check if Pepper Flash for Google Chrome version is less than 16.0.0.235
OR ActiveX Control is installed + Flash*.ocx version
ActiveX Control is installed
AND Check for Flash*.ocx file version
Check if Flash*.ocx version is less than 13.0.0.259
OR Check for file version
Check if Flash*.ocx version is less than 16.0.0.235
AND Check if Flash*.ocx version is greater than or equal 14.0.0.0
|