Update Protection against Adobe Flash Player Subvert Domain Sandbox Vulnerability (APSB10-06)
| Check Point Reference: | CPAI-2010-039 | |
| Date Published: | ||
| Severity: | ||
| Last Updated: | ||
| Source: | Adobe Security Bulletin APSB10-06 | |
| Industry Reference(s): | CVE-2010-0186 |
|
| Protection Provided by: |
Security Gateway
|
|
| Who is Vulnerable? Adobe Flash Player version 10.0.42.34 and earlier | ||
| Vulnerability Description A critical vulnerability has been identified in Adobe Flash Player. This vulnerability could subvert the domain sandbox and make unauthorized cross-domain requests. |
||
|
Update/Patch Available Apply patches: Adobe Security Bulletin APSB10-06 |
|
|
Vulnerability Details The vulnerability could allow remote attackers to bypass intended sandbox restrictions and make cross-domain requests via unspecified vectors. |
Protection Overview
This protection will detect and block attempts to exploit this vulnerability.
Please note that the protection offered in this advisory may cause false positives by blocking legitimate traffic. We are working on solving this issue.
This issue has been fixed on the update package from March 1, 2010.
In order for the protection to be activated, update your Security Gateway product to the latest IPS update. For information on how to update IPS, go to SBP-2006-05, Protection tab and select the version of your choice.
To configure the defense, select your product from the list below and follow the related protection steps.