CVE-2016-4171
CVE-2016-4171
In short
Adobe Flash Player versions up to 21.0.0.242 contain an unspecified vulnerability that allows attackers to run arbitrary code on a user's computer. This flaw was actively exploited in the wild in June 2016.
Technical detail
An unspecified memory corruption or code execution vulnerability in Adobe Flash Player 21.0.0.242 and earlier allows remote code execution through unknown attack vectors, with no preconditions beyond user interaction with malicious content. Active exploitation was confirmed in June 2016.
Summary generated and translated by AI from the official description.
Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier allows remote attackers to execute arbitrary code via unknown vectors, as exploited in the wild in June 2016.
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00031.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-06/msg00035.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-06/msg00038.htmlhttps://access.redhat.com/errata/RHSA-2016:1238https://github.com/cisagov/vulnrichment/issues/196https://helpx.adobe.com/security/products/flash-player/apsa16-03.htmlhttps://helpx.adobe.com/security/products/flash-player/apsb16-18.htmlhttps://security.gentoo.org/glsa/201606-08https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2016-4171https://www.kb.cert.org/vuls/id/748992http://www.securityfocus.com/bid/91184http://www.securitytracker.com/id/1036094