Oval Definition:	oval:org.mitre.oval:def:12259
Revision Date: 2015-08-03 Version: 49 Title: Unspecified ActiveX control vulnerability in Adobe Flash Player version less than 9.0.289.0 and 10.x less than 10.1.102.64 Description: An unspecified ActiveX control in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 (Flash10h.ocx) on Windows allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted FLV video. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2010-3637 Platform(s): Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows Vista Microsoft Windows XP Product(s): Adobe Flash Player Definition Synopsis Check if Adobe Flash Player is installed and version is less than 9.0.289.0 Adobe Flash Player is installed AND Check if Adobe Flash Player version less than 9.0.289.0 OR Check if Adobe Flash Player 10 is installed and version is less than 10.1.102.64 Check if Adobe Flash Player version less than 10.1.102.64 AND Adobe Flash Player 10 is installed OR Flash.ocx section ActiveX Control is installed AND Flash.ocx versions section Flash.ocx 10 section Determine if the version of Flash.ocx is less than 10.1.102.64 AND Determine if the version of Flash.ocx is greater than or equal 10.0 OR Flash.ocx 9 section Determine if the version of Flash.ocx is less than 9.0.289.0 AND Determine if the version of Flash.ocx is greater than or equal 9.0
BACK