10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.008 Low
EPSS
Percentile
81.5%
The remote host is missing KB2837385. It may, therefore, potentially affected by several memory corruption related to the installed version of the Adobe Flash ActiveX control that could lead to code execution.
#
# (C) Tenable Network Security, Inc.
#
include("compat.inc");
if (description)
{
script_id(66448);
script_version("1.10");
script_cvs_date("Date: 2019/11/27");
script_cve_id(
"CVE-2013-2728",
"CVE-2013-3324",
"CVE-2013-3325",
"CVE-2013-3326",
"CVE-2013-3327",
"CVE-2013-3328",
"CVE-2013-3329",
"CVE-2013-3330",
"CVE-2013-3331",
"CVE-2013-3332",
"CVE-2013-3333",
"CVE-2013-3334",
"CVE-2013-3335"
);
script_bugtraq_id(
59889,
59890,
59891,
59892,
59893,
59894,
59895,
59896,
59897,
59898,
59899,
59900,
59901
);
script_xref(name:"MSKB", value:"2837385");
script_name(english:"MS KB2837385: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer 10");
script_summary(english:"Checks version of ActiveX control");
script_set_attribute(attribute:"synopsis", value:
"The remote host has an ActiveX control installed that is potentially
affected by multiple vulnerabilities.");
script_set_attribute(attribute:"description", value:
"The remote host is missing KB2837385. It may, therefore, potentially
affected by several memory corruption related to the installed version
of the Adobe Flash ActiveX control that could lead to code execution.");
script_set_attribute(attribute:"see_also", value:"http://www.adobe.com/support/security/bulletins/apsb13-14.html");
script_set_attribute(attribute:"see_also", value:"https://docs.microsoft.com/en-us/security-updates/SecurityAdvisories/2016/2755801");
script_set_attribute(attribute:"see_also", value:"https://support.microsoft.com/en-us/help/2837385/microsoft-security-advisory-update-for-vulnerabilities-in-adobe-flash");
script_set_attribute(attribute:"solution", value:
"Install Microsoft KB2837385.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2013-3335");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2013/05/14");
script_set_attribute(attribute:"patch_publication_date", value:"2013/05/14");
script_set_attribute(attribute:"plugin_publication_date", value:"2013/05/15");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:microsoft:windows");
script_set_attribute(attribute:"cpe", value:"cpe:/a:adobe:flash_player");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Windows");
script_copyright(english:"This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("smb_hotfixes.nasl");
script_require_keys("SMB/Registry/Enumerated", "SMB/WindowsVersion", "SMB/ProductName");
script_require_ports(139, 445);
exit(0);
}
include("audit.inc");
include("smb_func.inc");
include("smb_hotfixes.inc");
include("smb_hotfixes_fcheck.inc");
include("smb_activex_func.inc");
include("misc_func.inc");
get_kb_item_or_exit('SMB/WindowsVersion');
if (hotfix_check_sp_range(win8:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);
if (hotfix_check_server_core() == 1) audit(AUDIT_WIN_SERVER_CORE);
get_kb_item_or_exit("SMB/Registry/Enumerated");
if (activex_init() != ACX_OK)
audit(AUDIT_FN_FAIL, "activex_init()");
# Adobe Flash Player CLSID
clsid = '{D27CDB6E-AE6D-11cf-96B8-444553540000}';
file = activex_get_filename(clsid:clsid);
if (isnull(file))
{
activex_end();
audit(AUDIT_FN_FAIL, "activex_get_filename", "NULL");
}
if (!file)
{
activex_end();
audit(AUDIT_ACTIVEX_NOT_FOUND, clsid);
}
# Get its version.
version = activex_get_fileversion(clsid:clsid);
if (!version)
{
activex_end();
audit(AUDIT_VER_FAIL, file);
}
info = '';
iver = split(version, sep:'.', keep:FALSE);
for (i=0; i<max_index(iver); i++)
iver[i] = int(iver[i]);
# < 11.7.700.202
if (
(report_paranoia > 1 || activex_get_killbit(clsid:clsid) == 0) &&
(
iver[0] < 11 ||
(
iver[0] == 11 &&
(
iver[1] < 7 ||
(iver[1] == 7 && iver[2] < 700) ||
(iver[1] == 7 && iver[2] == 700 && iver[3] < 202)
)
)
)
)
{
info = '\n Path : ' + file +
'\n Installed version : ' + version +
'\n Fixed version : 11.7.700.202\n';
}
port = kb_smb_transport();
if (info != '')
{
if (report_verbosity > 0)
{
if (report_paranoia > 1)
{
report = info +
'\n' +
'Note, though, that Nessus did not check whether the kill bit was\n' +
"set for the control's CLSID because of the Report Paranoia setting" + '\n' +
'in effect when this scan was run.\n';
}
else
{
report = info +
'\n' +
'Moreover, its kill bit is not set so it is accessible via Internet\n' +
'Explorer.\n';
}
security_hole(port:port, extra:report);
}
else security_hole(port);
}
else audit(AUDIT_HOST_NOT, 'affected');
Vendor | Product | Version | CPE |
---|---|---|---|
microsoft | windows | cpe:/o:microsoft:windows | |
adobe | flash_player | cpe:/a:adobe:flash_player |
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2728
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3324
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3325
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3326
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3327
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3328
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3329
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3330
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3331
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3332
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3333
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3334
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3335
www.adobe.com/support/security/bulletins/apsb13-14.html
docs.microsoft.com/en-us/security-updates/SecurityAdvisories/2016/2755801
support.microsoft.com/en-us/help/2837385/microsoft-security-advisory-update-for-vulnerabilities-in-adobe-flash