Lucene search
This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.SMB_KB2837385.NASLHistoryMay 15, 2013 - 12:00 a.m.
MS KB2837385: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer 10
2013-05-1500:00:00
This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
9
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.008 Low
EPSS
Percentile
81.5%
The remote host is missing KB2837385. It may, therefore, potentially affected by several memory corruption related to the installed version of the Adobe Flash ActiveX control that could lead to code execution.
#
# (C) Tenable Network Security, Inc.
#
include("compat.inc");
if (description)
{
script_id(66448);
script_version("1.10");
script_cvs_date("Date: 2019/11/27");
script_cve_id(
"CVE-2013-2728",
"CVE-2013-3324",
"CVE-2013-3325",
"CVE-2013-3326",
"CVE-2013-3327",
"CVE-2013-3328",
"CVE-2013-3329",
"CVE-2013-3330",
"CVE-2013-3331",
"CVE-2013-3332",
"CVE-2013-3333",
"CVE-2013-3334",
"CVE-2013-3335"
);
script_bugtraq_id(
59889,
59890,
59891,
59892,
59893,
59894,
59895,
59896,
59897,
59898,
59899,
59900,
59901
);
script_xref(name:"MSKB", value:"2837385");
script_name(english:"MS KB2837385: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer 10");
script_summary(english:"Checks version of ActiveX control");
script_set_attribute(attribute:"synopsis", value:
"The remote host has an ActiveX control installed that is potentially
affected by multiple vulnerabilities.");
script_set_attribute(attribute:"description", value:
"The remote host is missing KB2837385. It may, therefore, potentially
affected by several memory corruption related to the installed version
of the Adobe Flash ActiveX control that could lead to code execution.");
script_set_attribute(attribute:"see_also", value:"http://www.adobe.com/support/security/bulletins/apsb13-14.html");
script_set_attribute(attribute:"see_also", value:"https://docs.microsoft.com/en-us/security-updates/SecurityAdvisories/2016/2755801");
script_set_attribute(attribute:"see_also", value:"https://support.microsoft.com/en-us/help/2837385/microsoft-security-advisory-update-for-vulnerabilities-in-adobe-flash");
script_set_attribute(attribute:"solution", value:
"Install Microsoft KB2837385.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2013-3335");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2013/05/14");
script_set_attribute(attribute:"patch_publication_date", value:"2013/05/14");
script_set_attribute(attribute:"plugin_publication_date", value:"2013/05/15");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:microsoft:windows");
script_set_attribute(attribute:"cpe", value:"cpe:/a:adobe:flash_player");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Windows");
script_copyright(english:"This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("smb_hotfixes.nasl");
script_require_keys("SMB/Registry/Enumerated", "SMB/WindowsVersion", "SMB/ProductName");
script_require_ports(139, 445);
exit(0);
}
include("audit.inc");
include("smb_func.inc");
include("smb_hotfixes.inc");
include("smb_hotfixes_fcheck.inc");
include("smb_activex_func.inc");
include("misc_func.inc");
get_kb_item_or_exit('SMB/WindowsVersion');
if (hotfix_check_sp_range(win8:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);
if (hotfix_check_server_core() == 1) audit(AUDIT_WIN_SERVER_CORE);
get_kb_item_or_exit("SMB/Registry/Enumerated");
if (activex_init() != ACX_OK)
audit(AUDIT_FN_FAIL, "activex_init()");
# Adobe Flash Player CLSID
clsid = '{D27CDB6E-AE6D-11cf-96B8-444553540000}';
file = activex_get_filename(clsid:clsid);
if (isnull(file))
{
activex_end();
audit(AUDIT_FN_FAIL, "activex_get_filename", "NULL");
}
if (!file)
{
activex_end();
audit(AUDIT_ACTIVEX_NOT_FOUND, clsid);
}
# Get its version.
version = activex_get_fileversion(clsid:clsid);
if (!version)
{
activex_end();
audit(AUDIT_VER_FAIL, file);
}
info = '';
iver = split(version, sep:'.', keep:FALSE);
for (i=0; i<max_index(iver); i++)
iver[i] = int(iver[i]);
# < 11.7.700.202
if (
(report_paranoia > 1 || activex_get_killbit(clsid:clsid) == 0) &&
(
iver[0] < 11 ||
(
iver[0] == 11 &&
(
iver[1] < 7 ||
(iver[1] == 7 && iver[2] < 700) ||
(iver[1] == 7 && iver[2] == 700 && iver[3] < 202)
)
)
)
)
{
info = '\n Path : ' + file +
'\n Installed version : ' + version +
'\n Fixed version : 11.7.700.202\n';
}
port = kb_smb_transport();
if (info != '')
{
if (report_verbosity > 0)
{
if (report_paranoia > 1)
{
report = info +
'\n' +
'Note, though, that Nessus did not check whether the kill bit was\n' +
"set for the control's CLSID because of the Report Paranoia setting" + '\n' +
'in effect when this scan was run.\n';
}
else
{
report = info +
'\n' +
'Moreover, its kill bit is not set so it is accessible via Internet\n' +
'Explorer.\n';
}
security_hole(port:port, extra:report);
}
else security_hole(port);
}
else audit(AUDIT_HOST_NOT, 'affected');
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | windows | cpe:/o:microsoft:windows | |
| adobe | flash_player | cpe:/a:adobe:flash_player |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2728
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3324
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3325
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3326
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3327
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3328
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3329
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3330
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3331
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3332
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3333
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3334
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3335
www.adobe.com/support/security/bulletins/apsb13-14.html
docs.microsoft.com/en-us/security-updates/SecurityAdvisories/2016/2755801
support.microsoft.com/en-us/help/2837385/microsoft-security-advisory-update-for-vulnerabilities-in-adobe-flash
Related
cve
cve
suse
suse
Security update for flash-player (important)
2013-05-17 02:04:12
flash-player to 11.2.202.285 (important)
2013-06-10 17:11:43
flash-player to 11.2.202.285 (important)
2013-06-10 18:18:44
openvas
openvas
Adobe Air Multiple Vulnerabilities -01 May 13 (Windows)
2013-05-21 00:00:00
Adobe Flash Player Multiple Vulnerabilities -01 (May 2013) - Mac OS X
2013-05-21 00:00:00
Adobe Air Multiple Vulnerabilities -01 (May 2013) - Mac OS X
2013-05-21 00:00:00
ubuntucve
ubuntucve
prion
prion
Memory corruption
2013-05-16 11:45:00
Memory corruption
2013-05-16 11:45:00
Memory corruption
2013-05-16 11:45:00
cvelist
cvelist
nvd
nvd
nessus
nessus
RHEL 5 / 6 : flash-plugin (RHSA-2013:0825)
2013-05-16 00:00:00
openSUSE Security Update : flash-player (openSUSE-SU-2013:0954-1)
2014-06-13 00:00:00
freebsd
freebsd
linux-flashplugin -- multiple vulnerabilities
2013-05-14 00:00:00
redhat
redhat
(RHSA-2013:0825) Critical: flash-plugin security update
2013-05-15 00:00:00
securityvulns
securityvulns
Adobe Flash Player multiple security vulnerabilities
2013-07-15 00:00:00
checkpoint_advisories
checkpoint_advisories
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2013-09-14 00:00:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.008 Low
EPSS
Percentile
81.5%
Related for SMB_KB2837385.NASL