CVE-2016-4151
First published: Thu Jun 16 2016(Updated: )
Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-083.
Credit: psirt@adobe.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat enterprise Linux desktop | =5.0 | |
| redhat enterprise Linux desktop | =6.0 | |
| redhat enterprise Linux server | =5.0 | |
| redhat enterprise Linux server | =6.0 | |
| redhat enterprise Linux workstation | =5.0 | |
| redhat enterprise Linux workstation | =6.0 | |
| Adobe Flash Player | <=21.0.0.242 | |
| Apple iOS and macOS | ||
| Microsoft Windows | ||
| Adobe Acrobat Reader | <=11.2.202.621 | |
| Linux Kernel | ||
| Adobe Acrobat Reader | <=18.0.0.352 | |
| Microsoft Windows 10 | ||
| Microsoft Windows 8.1 | ||
| Adobe Acrobat Reader | <=21.0.0.242 | |
| Adobe Acrobat Reader | <=21.0.0.242 | |
| Chrome OS | ||
| Adobe Acrobat Reader | <=21.0.0.242 | |
| openSUSE | =13.1 | |
| openSUSE | =13.2 | |
| SUSE Linux Enterprise Desktop with Beagle | =12 | |
| SUSE Linux Enterprise Desktop with Beagle | =12-sp1 | |
| SUSE Linux Enterprise Workstation Extension | =12 | |
| SUSE Linux Enterprise Workstation Extension | =12-sp1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00031.html
- http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00035.html
- http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00038.html
- http://www.securitytracker.com/id/1036117
- https://access.redhat.com/errata/RHSA-2016:1238
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-083
- https://helpx.adobe.com/security/products/flash-player/apsb16-18.html
Frequently Asked Questions
What is the severity of CVE-2016-4151?
The severity of CVE-2016-4151 is currently classified as unknown due to unspecified impact and attack vectors.
How do I fix CVE-2016-4151?
To fix CVE-2016-4151, ensure that you upgrade Adobe Flash Player to a version later than 21.0.0.242.
Which software is affected by CVE-2016-4151?
CVE-2016-4151 affects Adobe Flash Player version 21.0.0.242 and earlier, particularly in Red Hat Enterprise Linux Desktop and Server versions 5.0 and 6.0.
Is Adobe Flash Player still vulnerable if I am using a newer version?
No, if you are using Adobe Flash Player version later than 21.0.0.242, you are not vulnerable to CVE-2016-4151.
What platforms are impacted by CVE-2016-4151?
CVE-2016-4151 impacts Adobe Flash Player used in various environments including Microsoft Internet Explorer and Edge on specific Red Hat Enterprise Linux versions.
- agent/type
- agent/remedy
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/redhat
- canonical/redhat enterprise linux desktop
- version/redhat enterprise linux desktop/5.0
- version/redhat enterprise linux desktop/6.0
- canonical/redhat enterprise linux server
- version/redhat enterprise linux server/5.0
- version/redhat enterprise linux server/6.0
- canonical/redhat enterprise linux workstation
- version/redhat enterprise linux workstation/5.0
- version/redhat enterprise linux workstation/6.0
- vendor/adobe
- canonical/adobe flash player
- version/adobe flash player/21.0.0.242
- vendor/apple
- canonical/apple ios and macos
- vendor/microsoft
- canonical/microsoft windows
- canonical/adobe acrobat reader
- version/adobe acrobat reader/11.2.202.621
- vendor/linux
- canonical/linux kernel
- version/adobe acrobat reader/18.0.0.352
- canonical/microsoft windows 10
- canonical/microsoft windows 8.1
- version/adobe acrobat reader/21.0.0.242
- vendor/google
- canonical/chrome os
- vendor/opensuse
- canonical/opensuse
- version/opensuse/13.1
- version/opensuse/13.2
- vendor/suse
- canonical/suse linux enterprise desktop with beagle
- version/suse linux enterprise desktop with beagle/12
- version/suse linux enterprise desktop with beagle/12-sp1
- canonical/suse linux enterprise workstation extension
- version/suse linux enterprise workstation extension/12
- version/suse linux enterprise workstation extension/12-sp1