10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.026 Low
EPSS
Percentile
90.3%
According to its version, at least one instance of Adobe Flash Professional on the remote Windows host is less than or equal to 11.5.1.349. It is, therefore, reportedly affected by an integer overflow error in Flash.exe when allocating memory to process a JPG object using its image dimensions.
#
# (C) Tenable Network Security, Inc.
#
include('compat.inc');
if (description)
{
script_id(59176);
script_version("1.8");
script_cvs_date("Date: 2019/12/04");
script_cve_id("CVE-2012-0778");
script_bugtraq_id(53419);
script_xref(name:"Secunia", value:"47116");
script_name(english:"Adobe Flash Professional <= 11.5.1.349 JPG Object Dimension Memory Allocation FLA File Handling Remote Overflow (APSB12-12)");
script_summary(english:"Checks version of Adobe Flash Professional");
script_set_attribute(attribute:"synopsis", value:
"The remote Windows host has a multimedia authoring application that
is affected by a code execution vulnerability.");
script_set_attribute(attribute:"description", value:
"According to its version, at least one instance of Adobe Flash
Professional on the remote Windows host is less than or equal to
11.5.1.349. It is, therefore, reportedly affected by an integer
overflow error in Flash.exe when allocating memory to process a JPG
object using its image dimensions.");
script_set_attribute(attribute:"see_also", value:"http://www.adobe.com/support/security/bulletins/apsb12-12.html");
script_set_attribute(attribute:"solution", value:
"Upgrade to Adobe Flash Professional CS5 11.5.2.349, Flash
Professional CS6, or later.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2012-0778");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2012/05/08");
script_set_attribute(attribute:"patch_publication_date", value:"2012/05/08");
script_set_attribute(attribute:"plugin_publication_date", value:"2012/05/17");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:adobe:flash");
script_set_attribute(attribute:"cpe", value:"cpe:/a:adobe:flash_cs");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Windows");
script_copyright(english:"This script is Copyright (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("flash_professional_installed.nasl");
script_require_keys("SMB/Adobe Flash Professional/Installed");
exit(0);
}
include("global_settings.inc");
include("misc_func.inc");
include("audit.inc");
get_kb_item_or_exit('SMB/Adobe Flash Professional/Installed');
installs = get_kb_list('SMB/Adobe Flash Professional/Installs/*');
if (isnull(installs)) exit(1, 'The \'SMB/Adobe Flash Professional/Installs KB list is missing.');
info = '';
info2 = '';
vuln = 0;
foreach install (keys(installs))
{
path = installs[install];
version = install - 'SMB/Adobe Flash Professional/Installs/';
if (ver_compare(ver:version, fix:'11.5.1.349') <= 0)
{
vuln++;
info +=
'\n Path : ' + path +
'\n Installed version : ' + version +
'\n Fixed version : 11.5.2.349 / 12.0.0.481\n';
}
else info2 += ' and ' + version;
}
if (info)
{
if (report_verbosity > 0) security_hole(port:get_kb_item('SMB/transport'), extra:info);
else security_hole(get_kb_item('SMB/transport'));
exit(0);
}
if (info2)
{
info2 -= ' and ';
if (' and ' >< info2) be = 'are';
else be = 'is';
exit(0, 'The host is not affected since Adobe Flash Professional ' + info2 + ' ' + be + ' installed.');
}
else exit(1, 'Unexpected error - \'info2\' is empty.');