First published: Wed May 11 2016(Updated: )
Adobe Flash Player 21.0.0.226 and earlier allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in May 2016.
Credit: psirt@adobe.com psirt@adobe.com
Affected Software | Affected Version | How to fix |
---|---|---|
Macromedia Flash Player | ||
Macromedia Flash Player | <=21.0.0.226 | |
Red Hat Enterprise Linux Desktop | =5.0 | |
Red Hat Enterprise Linux Desktop | =6.0 | |
Red Hat Enterprise Linux Server | =5.0 | |
Red Hat Enterprise Linux Server | =6.0 | |
Red Hat Enterprise Linux Server Supplementary EUS | =5.0 | |
Red Hat Enterprise Linux Server Supplementary EUS | =6.0 | |
Red Hat Enterprise Linux Workstation | =5.0 | |
Red Hat Enterprise Linux Workstation | =6.0 | |
Evergreen ILS | =11.4 | |
openSUSE | =13.1 | |
openSUSE | =13.2 | |
SUSE Linux Enterprise Desktop | =12 | |
SUSE Linux Enterprise Desktop | =12-sp1 | |
SUSE Linux Workstation Extension | =12 | |
SUSE Linux Workstation Extension | =12-sp1 | |
Apple iOS and macOS | ||
Chrome OS | ||
Linux Kernel | ||
Microsoft Windows Operating System |
The impacted product is end-of-life and should be disconnected if still in use.
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2016-4117 is considered a critical vulnerability due to its potential for remote code execution.
To fix CVE-2016-4117, update Adobe Flash Player to version 21.0.0.227 or later.
CVE-2016-4117 affects users of Adobe Flash Player 21.0.0.226 and earlier versions on various platforms.
CVE-2016-4117 can be exploited by remote attackers through unspecified vectors to execute arbitrary code.
CVE-2016-4117 was actively exploited in the wild starting in May 2016.