Oval Definition:	oval:org.cisecurity:def:1893
Revision Date: 2017-03-10 Version: 5 Title: Vulnerability in Adobe Flash Player versions 24.0.0.194 and earlier - CVE-2017-2992 Description: Adobe Flash Player versions 24.0.0.194 and earlier have an exploitable heap overflow vulnerability when parsing an MP4 header. Successful exploitation could lead to arbitrary code execution. Family: windows Class: vulnerability Status: INTERIM Reference(s): APSB17-04 CVE-2017-2992 Platform(s): Microsoft Windows 10 Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Product(s): ActiveX Control Adobe Flash Player Google Chrome Pepper Flash Definition Synopsis Adobe Flash Player is installed + version (ESR) Adobe Flash Player is installed AND Check if the Adobe Flash Player is less than 24.0.0.221 OR ActiveX Control Version ActiveX Control is installed AND Check for Flash*.ocx file version Check if Flash*.ocx version is less than 24.0.0.221 OR Google Chrome + Pepperflash version Google Chrome is installed AND Check if the version of Pepper Flash Player for Google Chrome is less than 24.0.0.221
BACK