| ID | 42490 |
| Created | May 13, 2016 |
| Updated | May 02, 2022 |
| Severity |
|
| CVE ID | CVE-2016-4117 |
| EPSS | 97.4% |
| Coverage |
IPS (Regular DB)
IPS (Extended DB)
|
| Default Action | drop |
| Active |
|
| Affected OS | Windows, Linux, MacOS, Other |
| Affected App | Adobe |
Legend
| Active/Available |
|
| InActive/Not Available |
|
Database Update History
| Date | Version | Detail |
|---|---|---|
| 2020-09-14 | 16.922 | Sig Added |
| 2019-03-05 | 14.565 | Sig Added |
Refine Search
Threat Encyclopedia
Adobe.Flash.Placement.Object.Handling.Code.Execution
Description
This indicates an attack attempt to exploit a Code Execution vulnerability in Adobe Flash Player.
The vulnerability is due to an error when the vulnerable software handles a maliciously crafted SWF file. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application, via a crafted SWF file.
Affected Products
Adobe Flash Player 21.0.0.226 and earlier versions for Windows, Macintosh, Linux, and Chrome OS
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://helpx.adobe.com/security/products/flash-player/apsa16-02.html
