Oval Definition:oval:org.cisecurity:def:905
Revision Date:2016-07-29Version:33
Title:Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier - CVE-2016-4140
Description:Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-083.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):APSB16-18
CVE-2016-4140
MS16-083
Platform(s):Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows 8.1
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows Vista
Microsoft Windows XP
Product(s):ActiveX Control
Adobe Flash Player
Pepper Flash
Definition Synopsis
  • Adobe Flash Player is installed + version (ESR)
  • Adobe Flash Player is installed
  • AND Check if Adobe Flash Player version is less than 18.0.0.360
  • OR Adobe Flash Player is installed + version
  • Adobe Flash Player is installed
  • AND Check for Adobe Flash Player version
  • Check if Adobe Flash Player version is less than 22.0.0.192
  • AND Check if Adobe Flash Player version is greater than or equal 19.0.0.0
  • OR Pepper Flash for Google Chrome version
  • Google Chrome is installed
  • AND Check if Pepper Flash for Google Chrome version is less than 22.0.0.192
  • OR ActiveX Control is installed + Flash*.ocx version
  • ActiveX Control is installed
  • AND Check for Flash*.ocx file version
  • Check if Flash*.ocx version is less than 18.0.0.360
  • OR Check for file version
  • Check if Flash*.ocx version is less than 22.0.0.192
  • AND Check if Flash*.ocx version is greater than or equal 19.0.0.0
  • BACK