Executive Summary

Summary
Title Security Update for Adobe Flash Player (3201860)
Informations
Name MS16-128 First vendor Publication 2016-10-27
Vendor Microsoft Last vendor Modification 2016-10-27
Severity (Vendor) N/A Revision 1.0

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C)
Cvss Base Score 9.3 Attack Range Network
Cvss Impact Score 10 Attack Complexity Medium
Cvss Expoit Score 8.6 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Severity Rating: Critical
Revision Note: V1.0 (October 27, 2016): Bulletin published.
Summary: This security update resolves a vulnerability in Adobe Flash Player when installed on all supported editions of Windows 8.1, Windows Server 2012, Windows Server 2012 R2, Windows RT 8.1, and Windows 10.

Original Source

Url : https://technet.microsoft.com/en-us/library/security/MS16-128

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-416 Use After Free

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 435

Snort® IPS/IDS

Date Description
2017-05-09 Microsoft Internet Explorer classid remote code execution attempt
RuleID : 42170 - Revision : 3 - Type : BROWSER-IE
2017-05-09 Microsoft Internet Explorer classid remote code execution attempt
RuleID : 42169 - Revision : 3 - Type : BROWSER-IE
2017-02-14 Microsoft Internet Explorer classid remote code execution attempt
RuleID : 41211 - Revision : 3 - Type : BROWSER-IE
2017-02-14 Microsoft Internet Explorer classid remote code execution attempt
RuleID : 41210 - Revision : 3 - Type : BROWSER-IE
2016-12-20 Adobe Standalone Flash Player IExternalizable deserialization use after free ...
RuleID : 40799 - Revision : 3 - Type : FILE-FLASH
2016-12-20 Adobe Standalone Flash Player IExternalizable deserialization use after free ...
RuleID : 40798 - Revision : 3 - Type : FILE-FLASH
2016-12-06 Microsoft Internet Explorer msSaveBlob use after free attempt
RuleID : 40654 - Revision : 2 - Type : BROWSER-IE
2016-12-06 Microsoft Internet Explorer msSaveBlob use after free attempt
RuleID : 40653 - Revision : 2 - Type : BROWSER-IE
2016-11-30 Adobe Standalone Flash Player IExternalizable deserialization use after free ...
RuleID : 40545 - Revision : 3 - Type : FILE-FLASH
2016-11-30 Adobe Standalone Flash Player IExternalizable deserialization use after free ...
RuleID : 40544 - Revision : 3 - Type : FILE-FLASH

Nessus® Vulnerability Scanner

Date Description
2016-11-08 Name : The remote Windows host has a browser plugin installed that is affected by mu...
File : smb_nt_ms16-141.nasl - Type : ACT_GATHER_INFO
2016-10-31 Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201610-10.nasl - Type : ACT_GATHER_INFO
2016-10-31 Name : The remote openSUSE host is missing a security update.
File : openSUSE-2016-1239.nasl - Type : ACT_GATHER_INFO
2016-10-31 Name : The remote openSUSE host is missing a security update.
File : openSUSE-2016-1240.nasl - Type : ACT_GATHER_INFO
2016-10-28 Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_de6d01d59c4411e6ba670011d823eebd.nasl - Type : ACT_GATHER_INFO
2016-10-28 Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2016-2662-1.nasl - Type : ACT_GATHER_INFO
2016-10-27 Name : The remote Windows host has a browser plugin installed that is affected by an...
File : flash_player_apsb16-36.nasl - Type : ACT_GATHER_INFO
2016-10-27 Name : The remote macOS or Mac OS X host has a browser plugin installed that is affe...
File : macosx_flash_player_apsb16-36.nasl - Type : ACT_GATHER_INFO
2016-10-27 Name : The remote Red Hat host is missing a security update.
File : redhat-RHSA-2016-2119.nasl - Type : ACT_GATHER_INFO
2016-10-27 Name : The remote Windows host has a browser plugin installed that is affected by an...
File : smb_nt_ms16-128.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
Date Informations
2019-05-16 21:21:55
  • Multiple Updates
2016-11-09 13:25:43
  • Multiple Updates
2016-11-03 21:26:28
  • Multiple Updates
2016-11-02 05:28:35
  • Multiple Updates
2016-10-28 13:24:00
  • Multiple Updates
2016-10-27 21:18:11
  • First insertion