Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2008-2022 Tenable Network Security, Inc.FLASH_PLAYER_APSB08-11.NASL
HistoryApr 10, 2008 - 12:00 a.m.

Flash Player < 8.0.42.0 / 9.0.124.0 Multiple Vulnerabilities (APSB08-11)

2008-04-1000:00:00
This script is Copyright (C) 2008-2022 Tenable Network Security, Inc.
www.tenable.com
25
JSON

According to its version number, the instance of Flash Player on the remote Windows host is affected by multiple issues, including several that could allow for arbitrary code execution.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(31799);
  script_version("1.27");
  script_set_attribute(attribute:"plugin_modification_date", value:"2022/04/11");

  script_cve_id(
    "CVE-2007-0071",
    "CVE-2007-5275",
    "CVE-2007-6019",
    "CVE-2007-6243",
    "CVE-2007-6637",
    "CVE-2008-1654",
    "CVE-2008-1655"
  );
  script_bugtraq_id(
    26930,
    26966,
    27034,
    28694,
    28695,
    28696,
    28697
  );
  script_xref(name:"SECUNIA", value:"28083");

  script_name(english:"Flash Player < 8.0.42.0 / 9.0.124.0 Multiple Vulnerabilities (APSB08-11)");

  script_set_attribute(attribute:"synopsis", value:
"The remote Windows host contains a browser plugin that is affected by
multiple issues.");
  script_set_attribute(attribute:"description", value:
"According to its version number, the instance of Flash Player on the
remote Windows host is affected by multiple issues, including several
that could allow for arbitrary code execution.");
  script_set_attribute(attribute:"see_also", value:"https://www.adobe.com/support/security/bulletins/apsb08-11.html");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Flash Player version 9.0.124.0 / 8.0.42.0 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploit_framework_core", value:"true");
  script_set_attribute(attribute:"exploited_by_malware", value:"true");
  script_set_attribute(attribute:"exploit_framework_canvas", value:"true");
  script_set_attribute(attribute:"canvas_package", value:"CANVAS");
  script_cwe_id(20, 79, 189, 352);

  script_set_attribute(attribute:"patch_publication_date", value:"2009/10/19");
  script_set_attribute(attribute:"plugin_publication_date", value:"2008/04/10");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:adobe:flash_player");
  script_set_attribute(attribute:"thorough_tests", value:"true");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Windows");

  script_copyright(english:"This script is Copyright (C) 2008-2022 Tenable Network Security, Inc.");

  script_dependencies("flash_player_installed.nasl");
  script_require_keys("SMB/Flash_Player/installed");

  exit(0);
}

#

if (!get_kb_item("SMB/Flash_Player/installed")) exit(0);


# Identify vulnerable versions.
info = "";

foreach variant (make_list("Plugin", "ActiveX"))
{
  vers = get_kb_list("SMB/Flash_Player/"+variant+"/Version/*");
  files = get_kb_list("SMB/Flash_Player/"+variant+"/File/*");
  if (!isnull(vers) && !isnull(files))
  {
    foreach key (keys(vers))
    {
      num = key - ("SMB/Flash_Player/"+variant+"/Version/");

      ver = vers[key];
      if (ver)
      {
        iver = split(ver, sep:'.', keep:FALSE);
        for (i=0; i<max_index(iver); i++)
          iver[i] = int(iver[i]);

        if (
          (iver[0] == 8 && iver[1] == 0 && iver[2] < 42) ||
          (iver[0] == 9 && iver[1] == 0 && iver[2] < 124)
        )
        {
          file = files["SMB/Flash_Player/"+variant+"/File/"+num];
          if (variant == "Plugin")
          {
            info += '  - Browser Plugin (for Firefox / Netscape / Opera) :\n';
          }
          else if (variant == "ActiveX")
          {
            info += '  - ActiveX control (for Internet Explorer) :\n';
          }
          info += '    ' + file + ', ' + ver + '\n';
        }
      }
    }
  }
}


if (info)
{
  report = string(
    "\n",
    "Nessus has identified the following vulnerable instance(s) of Flash\n",
    "Player installed on the remote host :\n",
    "\n",
    info
  );
  security_hole(port:get_kb_item("SMB/transport"), extra:report);
}
VendorProductVersionCPE
adobeflash_playercpe:/a:adobe:flash_player

Related

openvas 21
nessus 23
suse 2
securityvulns 4
seebug 2
gentoo 2
redhat 4
zdi 3
cve 8
jvn 1
prion 8
cert 2
ubuntucve 7
freebsd 3
canvas 1
checkpoint_advisories 1
thn 1
openvas
openvas
Gentoo Security Advisory GLSA 200804-21 (netscape-flash)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200804-21 (netscape-flash)
2008-09-24 00:00:00
SuSE Update for flash-player SUSE-SA:2008:022
2009-01-23 00:00:00
nessus
nessus
openSUSE 10 Security Update : flash-player (flash-player-5161)
2008-04-17 00:00:00
SuSE 10 Security Update : flash-player (ZYPP Patch Number 5159)
2008-04-17 00:00:00
GLSA-200804-21 : Adobe Flash Player: Multiple vulnerabilities
2008-04-22 00:00:00
suse
suse
remote code execution in flash-player
2008-04-11 13:28:58
remote code execution in flash-player
2007-12-21 16:24:32
securityvulns
securityvulns
Adobe Flash Player multiple security vulnerabilities
2008-04-14 00:00:00
ZDI-08-021: Adobe Flash Player DeclareFunction2 Invalid Object Use Vulnerability
2008-04-10 00:00:00
Secunia Research: Adobe Flash Player &quot;Declare Function &#40;V7&#41;&quot; Heap Overflow
2008-04-14 00:00:00
seebug
seebug
Adobe Flash Player 9.0.124.0版本修改多个安全漏洞
2008-04-11 00:00:00
Adobe Flash Player SWF文件DeclareFunction2 ActionScript标签堆溢出漏洞
2008-04-11 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2008-04-18 00:00:00
Adobe Flash Player: Multiple vulnerabilities
2008-01-20 00:00:00
redhat
redhat
(RHSA-2008:0221) Critical: flash-plugin security update
2008-04-08 00:00:00
(RHSA-2007:1126) Critical: flash-plugin security update
2007-12-18 00:00:00
(RHSA-2008:0945) Critical: flash-plugin security update
2008-10-28 00:00:00
zdi
zdi
Adobe Flash Player DeclareFunction2 Invalid Object Use Vulnerability
2008-04-08 00:00:00
Adobe Flash Script Injection Cross Domain Scripting Vulnerability
2008-04-08 00:00:00
Adobe Flash DefineSceneAndFrameLabelData Parsing Memory Corruption Vulnerability
2008-05-22 00:00:00
cve
cve
CVE-2007-6019
2008-04-09 21:05:00
CVE-2007-6243
2007-12-20 01:46:00
CVE-2008-1655
2008-04-09 21:05:00
jvn
jvn
JVN#45675516 Flash Player vulnerable in handling cross-domain policy files
2007-12-20 00:00:00
prion
prion
Code injection
2008-04-09 21:05:00
Cross site scripting
2007-12-20 01:46:00
Design/Logic Flaw
2008-04-09 21:05:00
cert
cert
Adobe Flash Player may load arbitrary, malformed cross-domain policy files
2008-03-25 00:00:00
Adobe Flash Player integer overflow vulnerability
2008-04-25 00:00:00
ubuntucve
ubuntucve
CVE-2007-6019
2008-04-09 00:00:00
CVE-2007-6243
2007-12-20 00:00:00
CVE-2008-1654
2008-04-02 00:00:00
freebsd
freebsd
linux-flashplugin -- unspecified remote code execution vulnerability
2008-05-27 00:00:00
linux-flashplugin -- multiple vulnerabilities
2007-12-18 00:00:00
linux-flashplugin -- multiple vulnerabilities
2008-10-15 00:00:00
canvas
canvas
Immunity Canvas: FLASH_DUKE
2008-04-09 21:05:00
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Multimedia File Code Execution (CVE-2007-0071)
2008-11-18 00:00:00
thn
thn
Phoenix Exploit's Kit 2.8 mini version
2011-10-12 17:41:00
JSON
Related for FLASH_PLAYER_APSB08-11.NASL
openvas21nessus23suse2securityvulns4seebug2gentoo2redhat4zdi3cve8jvn1prion8cert2ubuntucve7freebsd3canvas1checkpoint_advisories1thn1