Detalji

Prilikom upotrebe programskog paketa Adobe Flash Player, na Sun Solaris 10 platformi, uočene su višestruke sigurnosne ranjivosti. Radi se o modulu za web preglednike, namijenjenom reprodukciji Flash multimedijskih sadržaja. Nedostaci se javljaju zbog nepravilne obrade posebno oblikovanih Flash sadržaja i kao posljedica korupcije memorije. Spomenuti propusti napadačima omogućuju pokretanje proizvoljnog programskog koda, izvođenje napada uskraćivanja usluge (eng. Denial of Service) i otkrivanje osjetljivih informacija. Svim se korisnicima savjetuje odgovarajuća nadogradnja.

Oracle Solaris Adobe Flash Player Multiple Vulnerabilities
Secunia Advisory 	SA42926 	
Release Date 	2011-01-19
Criticality level 	Highly criticalHighly critical
Impact 	Security Bypass
Exposure of sensitive information
System access
Where 	From remote
Authentication level 	Available in Customer Area
  	 
Report reliability 	Available in Customer Area
Solution Status 	Vendor Patch
  	 
Systems affected 	Available in Customer Area
Approve distribution 	Available in Customer Area
  	 
Operating System	
	Sun Solaris 10

Secunia CVSS Score 	Available in Customer Area
CVE Reference(s) 	CVE-2010-3636 CVSS available in Customer Area
CVE-2010-3637 CVSS available in Customer Area
CVE-2010-3639 CVSS available in Customer Area
CVE-2010-3640 CVSS available in Customer Area
CVE-2010-3641 CVSS available in Customer Area
CVE-2010-3642 CVSS available in Customer Area
CVE-2010-3643 CVSS available in Customer Area
CVE-2010-3644 CVSS available in Customer Area
CVE-2010-3645 CVSS available in Customer Area
CVE-2010-3646 CVSS available in Customer Area
CVE-2010-3647 CVSS available in Customer Area
CVE-2010-3648 CVSS available in Customer Area
CVE-2010-3649 CVSS available in Customer Area
CVE-2010-3650 CVSS available in Customer Area
CVE-2010-3652 CVSS available in Customer Area
CVE-2010-3654 CVSS available in Customer Area
	   	

Description
Oracle has acknowledged multiple vulnerabilities in Solaris, which can be exploited by malicious people to disclose sensitive information, bypass certain security restrictions, or compromise a user's system.

For more information:
SA41917

Solution
Apply patches.
Further details available in Customer Area
Original Advisory
http://blogs.sun.com/security/entry/multiple_vulnerabilities_in_adobe_flash1

Other references
Further details available in Customer Area

Deep Links
Links available in Customer Area

Idi na vrh