KLA10782
Obsolete Flash Player version in Microsoft Internet Explorer and Microsoft Edge
Updated: 11/21/2017
CVSS
?
10.0
Detect date
?
04/12/2016
Severity
?
Critical
Description

Microsoft released update to address vulnerabilities in Flash Player for Internet explorer and Microsoft Edge. For details look at KLA10780. 


Technical details

To mitigate this vulnerability you can implement some of workarounds listed in original Microsoft advisory: disable Adobe Flash Player, prevent Adobe FP from running on Internet Explorer via Group Policy, prevent Adobe FP from running in Office 2010, prevent ActiveX controls from running in Office 2007 & 2010, set security zones settings to “High” to block kind of content, configure IE to prompt before running kind of content, use IE Trusted sites zone. For further instructions you can read original Microsoft advisory listed below.

 

Affected products

Adobe Flash Player for Internet Explorer and Microsoft Edge versions earlier than 21.0.0.197

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories

MS16-050
ADV160001

Impacts
?
ACE 
[?]
Related products
Microsoft Internet Explorer
Microsoft Edge
CVE-IDS
?

CVE-2016-1018
CVE-2016-1017
CVE-2016-1016
CVE-2016-1015
CVE-2016-1014
CVE-2016-1013
CVE-2016-1012
CVE-2016-1011
CVE-2016-1006
CVE-2016-1019

Microsoft official advisories
MS16-050
ADV160001
KB list

3154132