Scanning a win/xp machine with Windows Nessus, plugin 11952 says the flash
version is older than 7.0.19.0, but Shavlik says the version is 7.0.68.0.
Looking closer, I find
flash7a.ocx 7.0.68.0
flash.ocx 6.0.79.0
in \windows\system32\macromed\flash. Looks like the install of version 7
didn't remove all of version 6 and the plugin is seeing the old version.
(I modified the plugin to display the version number and got 6.0.79.0.)
The registry entry at
HKEY_LOCAL_MACHINE\SOFTWARE\Macromedia\FlashPlayer\CurrentVersion says
7,0,68,0. Unless there's some way the old, vulnerable flash can be
triggered, I think the plugin should ignore the old file.
_______________________________________________
Nessus mailing list
[email protected]
http://mail.nessus.org/mailman/listinfo/nessus
