Lucene search
This script is Copyright (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.SMB_KB2938527.NASLHistoryMar 11, 2014 - 12:00 a.m.
MS KB2938527: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer
2014-03-1100:00:00
This script is Copyright (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
25
6.4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:P/A:N
0.006 Low
EPSS
Percentile
78.3%
The remote host is missing KB2938527. It is, therefore, affected by multiple vulnerabilities :
-
A vulnerability exists that could be used to bypass the same origin policy. (CVE-2014-0503)
-
A vulnerability exists that could be used to read the contents of the clipboard. (CVE-2014-0504)
#
# (C) Tenable Network Security, Inc.
#
include("compat.inc");
if (description)
{
script_id(72936);
script_version("1.12");
script_cvs_date("Date: 2019/11/26");
script_cve_id("CVE-2014-0503", "CVE-2014-0504");
script_bugtraq_id(66122, 66127);
script_xref(name:"MSKB", value:"2938527");
script_name(english:"MS KB2938527: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer");
script_summary(english:"Checks version of ActiveX control");
script_set_attribute(attribute:"synopsis", value:
"The remote host has an ActiveX control installed that is affected by
multiple vulnerabilities.");
script_set_attribute(attribute:"description", value:
"The remote host is missing KB2938527. It is, therefore, affected by
multiple vulnerabilities :
- A vulnerability exists that could be used to bypass the
same origin policy. (CVE-2014-0503)
- A vulnerability exists that could be used to read the
contents of the clipboard. (CVE-2014-0504)");
script_set_attribute(attribute:"see_also", value:"https://helpx.adobe.com/security/products/flash-player/apsb14-08.html");
script_set_attribute(attribute:"see_also", value:"https://docs.microsoft.com/en-us/security-updates/SecurityAdvisories/2016/2755801");
script_set_attribute(attribute:"see_also", value:"https://support.microsoft.com/en-us/help/2938527/microsoft-security-advisory-update-for-vulnerabilities-in-adobe-flash");
script_set_attribute(attribute:"solution", value:
"Install Microsoft KB2938527.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N");
script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2014-0503");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"exploited_by_malware", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2014/03/11");
script_set_attribute(attribute:"patch_publication_date", value:"2014/03/11");
script_set_attribute(attribute:"plugin_publication_date", value:"2014/03/11");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:microsoft:windows");
script_set_attribute(attribute:"cpe", value:"cpe:/a:adobe:flash_player");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Windows");
script_copyright(english:"This script is Copyright (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("smb_hotfixes.nasl");
script_require_keys("SMB/Registry/Enumerated", "SMB/WindowsVersion");
script_require_ports(139, 445);
exit(0);
}
include("audit.inc");
include("smb_func.inc");
include("smb_hotfixes.inc");
include("smb_hotfixes_fcheck.inc");
include("smb_activex_func.inc");
include("misc_func.inc");
get_kb_item_or_exit("SMB/Registry/Enumerated");
get_kb_item_or_exit("SMB/WindowsVersion", exit_code:1);
if (hotfix_check_sp_range(win8:'0', win81:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);
if (hotfix_check_server_core() == 1) audit(AUDIT_WIN_SERVER_CORE);
if (activex_init() != ACX_OK) audit(AUDIT_FN_FAIL, "activex_init()");
# Adobe Flash Player CLSID
clsid = '{D27CDB6E-AE6D-11cf-96B8-444553540000}';
file = activex_get_filename(clsid:clsid);
if (isnull(file))
{
activex_end();
audit(AUDIT_FN_FAIL, "activex_get_filename", "NULL");
}
if (!file)
{
activex_end();
audit(AUDIT_ACTIVEX_NOT_FOUND, clsid);
}
# Get its version.
version = activex_get_fileversion(clsid:clsid);
if (!version)
{
activex_end();
audit(AUDIT_VER_FAIL, file);
}
info = '';
iver = split(version, sep:'.', keep:FALSE);
for (i=0; i<max_index(iver); i++)
iver[i] = int(iver[i]);
# < 12.0.0.77
if (
(report_paranoia > 1 || activex_get_killbit(clsid:clsid) == 0) &&
(
iver[0] < 12 ||
(
iver[0] == 12 &&
(
(iver[1] == 0 && iver[2] == 0 && iver[3] < 77)
)
)
)
)
{
info = '\n Path : ' + file +
'\n Installed version : ' + version +
'\n Fixed version : 12.0.0.77\n';
}
port = kb_smb_transport();
if (info != '')
{
if (report_verbosity > 0)
{
if (report_paranoia > 1)
{
report = info +
'\n' +
'Note, though, that Nessus did not check whether the kill bit was\n' +
"set for the control's CLSID because of the Report Paranoia setting" + '\n' +
'in effect when this scan was run.\n';
}
else
{
report = info +
'\n' +
'Moreover, its kill bit is not set so it is accessible via Internet\n' +
'Explorer.\n';
}
security_warning(port:port, extra:report);
}
else security_warning(port);
}
else audit(AUDIT_HOST_NOT, 'affected');
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | windows | cpe:/o:microsoft:windows | |
| adobe | flash_player | cpe:/a:adobe:flash_player |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0503
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0504
docs.microsoft.com/en-us/security-updates/SecurityAdvisories/2016/2755801
helpx.adobe.com/security/products/flash-player/apsb14-08.html
support.microsoft.com/en-us/help/2938527/microsoft-security-advisory-update-for-vulnerabilities-in-adobe-flash
Related
suse
suse
flash-player to 11.2.202.346 (important)
2014-03-15 10:04:12
Security update for flash-player (important)
2014-03-18 00:04:14
flash-player to 11.2.202.346 (important)
2014-03-14 21:04:13
thn
thn
Adobe releases important Security Updates for Flash Player
2014-03-11 05:45:00
nessus
nessus
SuSE 11.3 Security Update : flash-player (SAT Patch Number 9012)
2014-03-18 00:00:00
Flash Player < 12.0.0.77 Multiple Vulnerabilities (APSB14-08)
2013-03-13 00:00:00
openvas
openvas
SuSE Update for flash-player openSUSE-SU-2014:0379-1 (flash-player)
2014-03-17 00:00:00
SUSE: Security Advisory for flash-player (SUSE-SU-2014:0387-1)
2015-10-16 00:00:00
Mageia: Security Advisory (MGASA-2014-0128)
2022-01-28 00:00:00
mageia
mageia
Updated flash-player-plugin packages fix security vulnerabilities
2014-03-12 20:22:25
altlinux
altlinux
redhat
redhat
(RHSA-2014:0289) Moderate: flash-plugin security update
2014-03-12 00:00:00
prion
prion
Code injection
2014-03-12 05:15:00
Design/Logic Flaw
2014-03-12 05:15:00
nvd
nvd
CVE-2014-0503
2014-03-12 05:15:20
CVE-2014-0504
2014-03-12 05:15:20
cvelist
cvelist
CVE-2014-0503
2014-03-12 01:00:00
CVE-2014-0504
2014-03-12 01:00:00
ubuntucve
ubuntucve
CVE-2014-0504
2014-03-12 00:00:00
CVE-2014-0503
2014-03-12 00:00:00
cve
cve
CVE-2014-0504
2014-03-12 05:15:20
CVE-2014-0503
2014-03-12 05:15:20
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Information Disclosure (APSB14-08: CVE-2014-0504)
2014-03-13 00:00:00
Adobe Flash Player Same Origin Security Bypass (APSB14-08; CVE-2014-0503)
2014-03-13 00:00:00
hackerone
hackerone
Internet Bug Bounty: Same Origin Security Bypass Vulnerability
2014-03-11 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2014-05-03 00:00:00
securityvulns
securityvulns
Adobe Flash Player multiple security vulnerabilities
2014-05-04 00:00:00
6.4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:P/A:N
0.006 Low
EPSS
Percentile
78.3%
Related for SMB_KB2938527.NASL