Kaspersky Threats

KLA10774
Obsolete Flash Player version in Microsoft Internet Explorer

Updated: 05/13/2016

CVSS ?	10.0
Detect date ?	03/10/2016
Severity ?	Critical
Description	Microsoft released update to address vulnerabilities in Flash Player for Internet explorer. For details look at KLA10757. Technical details To mitigate this vulnerability you can implement some of workarounds listed in original Microsoft advisory: disable Adobe Flash Player, prevent Adobe FP from running on Internet Explorer via Group Policy, prevent Adobe FP from running in Office 2010, prevent ActiveX controls from running in Office 2007 & 2010, set security zones settings to “High” to block kind of content, configure IE to prompt before running kind of content, use IE Trusted sites zone. For further instructions you can read original Microsoft advisory listed below.
Affected products	Adobe Flash Player for Internet Explorer versions earlier than 21.0.0.182
Solution	Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Original advisories	MS16-036
Impacts ?	ACE [?] DoS [?]
Related products	Microsoft Internet Explorer
CVE-IDS ?	CVE-2016-0960 CVE-2016-0961 CVE-2016-0962 CVE-2016-0963 CVE-2016-0986 CVE-2016-0987 CVE-2016-0988 CVE-2016-0989 CVE-2016-0990 CVE-2016-0991 CVE-2016-0993 CVE-2016-0994 CVE-2016-0995 CVE-2016-0996 CVE-2016-1001 CVE-2016-1005 CVE-2016-1010 CVE-2015-8652 CVE-2015-8655 CVE-2015-8658
Microsoft official advisories	MS16-036
KB list	3144756