Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2022 and is owned by Tenable, Inc. or an Affiliate thereof.ADOBE_CONNECT_APSB21-19.NASL
HistoryMar 10, 2021 - 12:00 a.m.

Adobe Connect <= 11.0.5 Multiple Vulnerabilities (APSB21-19)

2021-03-1000:00:00
This script is Copyright (C) 2022 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
32
JSON

The version of Adobe Connect running on the remote host is 11.0.5 or earlier. It is, therefore, affected by multiple vulnerabilities, including the following:

  • Multiple reflected cross-site scripting vulnerabilities due to improper validation of user-supplied input before returning it to users. An remote attacker can exploit these, by convincing a user to click a specially crafted URL, to execute arbitrary script code in a user’s browser session. (CVE-2021-21079, CVE-2021-21080, CVE-2021-21081)

  • An arbitrary code execution vulnerability due to improper input validation. (CVE-2021-21085)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

##
# (C) Tenable Network Security, Inc.
##

include('compat.inc');

if (description)
{
  script_id(147419);
  script_version("1.6");
  script_set_attribute(attribute:"plugin_modification_date", value:"2022/06/28");

  script_cve_id(
    "CVE-2021-21079",
    "CVE-2021-21080",
    "CVE-2021-21081",
    "CVE-2021-21085"
  );
  script_xref(name:"IAVB", value:"2021-B-0016-S");

  script_name(english:"Adobe Connect <= 11.0.5 Multiple Vulnerabilities (APSB21-19)");

  script_set_attribute(attribute:"synopsis", value:
"The remote web server contains an application that is affected by multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The version of Adobe Connect running on the remote host is 11.0.5 or earlier. It is, therefore, affected by multiple 
vulnerabilities, including the following:

  - Multiple reflected cross-site scripting vulnerabilities due to improper validation of user-supplied input
    before returning it to users. An remote attacker can exploit these, by convincing a user to click a
    specially crafted URL, to execute arbitrary script code in a user's browser session. (CVE-2021-21079,
    CVE-2021-21080, CVE-2021-21081)

  - An arbitrary code execution vulnerability due to improper input validation. (CVE-2021-21085)


Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://helpx.adobe.com/security/products/connect/apsb21-19.html");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Adobe Connect version 11.2 or later");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-21085");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");

  script_set_attribute(attribute:"vuln_publication_date", value:"2021/03/09");
  script_set_attribute(attribute:"patch_publication_date", value:"2021/03/09");
  script_set_attribute(attribute:"plugin_publication_date", value:"2021/03/10");

  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:adobe:connect");
  script_set_attribute(attribute:"stig_severity", value:"II");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"CGI abuses");

  script_copyright(english:"This script is Copyright (C) 2022 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("adobe_connect_detect.nbin");
  script_require_keys("installed_sw/Adobe Connect");
  script_require_ports("Services/www", 80, 443);

  exit(0);
}

include('http.inc');
include('vcf.inc');

port = get_http_port(default:80);
app_info = vcf::get_app_info(app:'Adobe Connect', port:port, webapp:TRUE);

constraints = [{'fixed_version' : '11.0.6', 'fixed_display' : '11.2'}];

vcf::check_version_and_report(
  app_info:app_info,
  constraints:constraints,
  severity:SECURITY_WARNING,
  flags:{'xss':TRUE}
);
VendorProductVersionCPE
adobeconnectcpe:/a:adobe:connect

Related

openvas 1
adobe 1
threatpost 1
cve 4
prion 3
openvas
openvas
Adobe Connect Multiple Vulnerabilities (APSB21-19)
2021-03-12 00:00:00
adobe
adobe
APSB21-19 Security update available for Adobe Connect
2021-03-09 00:00:00
threatpost
threatpost
Adobe Critical Code-Execution Flaws Plague Windows Users
2021-03-09 20:44:18
cve
cve
CVE-2021-21080
2021-03-12 19:15:00
CVE-2021-21081
2022-02-25 08:30:31
CVE-2021-21079
2021-03-12 19:15:00
prion
prion
Cross site scripting
2021-03-12 19:15:00
Cross site scripting
2021-03-12 19:15:00
Input validation
2021-03-12 19:15:00
JSON
Related for ADOBE_CONNECT_APSB21-19.NASL
openvas1adobe1threatpost1cve4prion3