Zenith Live is coming to Europe in October. Join us! Register
Zenith Live is coming to Europe in October. Join us!
Register

 

Security Advisory - April 12, 2016

Zscaler Protects against Multiple Security Vulnerabilities in Adobe Flash Player

 

 

Zscaler, working with Microsoft through their MAPP program, has deployed protections for the following 3 vulnerabilities included in the April 2016 Adobe security bulletins. Zscaler will continue to monitor exploits associated with all vulnerabilities in the April release and deploy additional protections as necessary.

APSB16-10Security updates available for Flash Player

Severity: Critical
Affected Software

  • Adobe Flash Player Desktop Runtime 21.0.0.197 and earlier
  • Adobe Flash Player Extended Support Release 18.0.0.333 and earlier
  • Adobe Flash Player for Google Chrome 21.0.0.197 and earlier
  • Adobe Flash Player for Microsoft Edge and Internet Explorer 11 21.0.0.197 and earlier
  • Adobe Flash Player for Internet Explorer 11 21.0.0.197 and earlier
  • Adobe Flash Player for Linux 11.2.202.577 and earlier
  • AIR Desktop Runtime 21.0.0.176 and earlier
  • AIR SDK 21.0.0.176 and earlier
  • AIR SDK & Compiler 21.0.0.176 and earlier

CVE-2016-1017 – Flash Player Use-After-Free Vulnerability

CVE-2016-1018 – Flash Player Buffer Overflow / Underflow Vulnerability

CVE-2016-1019 – Flash Player Type Confusion Vulnerability

Description: Adobe has released security updates for Adobe Flash Player.  These updates address critical vulnerabilities that could potentially allow an attacker to take control of the affected system.