Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2012-2021 Tenable Network Security, Inc.SUSE_FLASH-PLAYER-8314.NASL
HistoryOct 11, 2012 - 12:00 a.m.

SuSE 10 Security Update : flash-player (ZYPP Patch Number 8314)

2012-10-1100:00:00
This script is Copyright (C) 2012-2021 Tenable Network Security, Inc.
www.tenable.com
14
JSON

flash player was updated to version 11.2.202.243 fixing a lot of security issues :

CVE-2012-5248 / CVE-2012-5249 / CVE-2012-5250 / CVE-2012-5251 / CVE-2012-5252 / CVE-2012-5253 / CVE-2012-5254 / CVE-2012-5255 / CVE-2012-5256 / CVE-2012-5257 / CVE-2012-5258 / CVE-2012-5259 / CVE-2012-5260 / CVE-2012-5261 / CVE-2012-5262 / CVE-2012-5263 / CVE-2012-5264 / CVE-2012-5265 / CVE-2012-5266 / CVE-2012-5267 / CVE-2012-5268 / CVE-2012-5269 / CVE-2012-5270 / CVE-2012-5271 / CVE-2012-5272

Please visit

http://www.adobe.com/support/security/bulletins/apsb12-22.html

for details.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The text description of this plugin is (C) Novell, Inc.
#

if (NASL_LEVEL < 3000) exit(0);

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(62494);
  script_version("1.7");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");

  script_cve_id("CVE-2012-5248", "CVE-2012-5249", "CVE-2012-5250", "CVE-2012-5251", "CVE-2012-5252", "CVE-2012-5253", "CVE-2012-5254", "CVE-2012-5255", "CVE-2012-5256", "CVE-2012-5257", "CVE-2012-5258", "CVE-2012-5259", "CVE-2012-5260", "CVE-2012-5261", "CVE-2012-5262", "CVE-2012-5263", "CVE-2012-5264", "CVE-2012-5265", "CVE-2012-5266", "CVE-2012-5267", "CVE-2012-5268", "CVE-2012-5269", "CVE-2012-5270", "CVE-2012-5271", "CVE-2012-5272");

  script_name(english:"SuSE 10 Security Update : flash-player (ZYPP Patch Number 8314)");
  script_summary(english:"Checks rpm output for the updated package");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote SuSE 10 host is missing a security-related patch."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"flash player was updated to version 11.2.202.243 fixing a lot of
security issues :

CVE-2012-5248 / CVE-2012-5249 / CVE-2012-5250 / CVE-2012-5251 /
CVE-2012-5252 / CVE-2012-5253 / CVE-2012-5254 / CVE-2012-5255 /
CVE-2012-5256 / CVE-2012-5257 / CVE-2012-5258 / CVE-2012-5259 /
CVE-2012-5260 / CVE-2012-5261 / CVE-2012-5262 / CVE-2012-5263 /
CVE-2012-5264 / CVE-2012-5265 / CVE-2012-5266 / CVE-2012-5267 /
CVE-2012-5268 / CVE-2012-5269 / CVE-2012-5270 / CVE-2012-5271 /
CVE-2012-5272

Please visit

http://www.adobe.com/support/security/bulletins/apsb12-22.html

for details."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-5248.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-5249.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-5250.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-5251.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-5252.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-5253.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-5254.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-5255.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-5256.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-5257.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-5258.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-5259.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-5260.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-5261.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-5262.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-5263.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-5264.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-5265.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-5266.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-5267.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-5268.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-5269.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-5270.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-5271.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-5272.html"
  );
  script_set_attribute(attribute:"solution", value:"Apply ZYPP patch number 8314.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploit_framework_core", value:"true");
  script_set_attribute(attribute:"exploited_by_malware", value:"true");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:suse:suse_linux");

  script_set_attribute(attribute:"patch_publication_date", value:"2012/10/09");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/10/11");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2012-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");

  exit(0);
}


include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) exit(0, "Local checks are not enabled.");
if (!get_kb_item("Host/SuSE/release")) exit(0, "The host is not running SuSE.");
if (!get_kb_item("Host/SuSE/rpm-list")) exit(1, "Could not obtain the list of installed packages.");

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) exit(1, "Failed to determine the architecture type.");
if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") exit(1, "Local checks for SuSE 10 on the '"+cpu+"' architecture have not been implemented.");


flag = 0;
if (rpm_check(release:"SLED10", sp:4, reference:"flash-player-11.2.202.243-0.5.1")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else exit(0, "The host is not affected.");
VendorProductVersionCPE
susesuse_linuxcpe:/o:suse:suse_linux

References

Related

nessus 12
openvas 15
suse 4
redhat 1
freebsd 1
gentoo 1
prion 25
ubuntucve 25
cve 25
checkpoint_advisories 8
nessus
nessus
openSUSE Security Update : flash-player (openSUSE-SU-2013:0370-1)
2014-06-13 00:00:00
SuSE 11.2 Security Update : flash-player (SAT Patch Number 6937)
2013-01-25 00:00:00
MS KB2758994: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer 10
2012-10-10 00:00:00
openvas
openvas
openSUSE: Security Advisory for flash-player (openSUSE-SU-2012:1324-1)
2012-12-13 00:00:00
SuSE Update for flash-player openSUSE-SU-2012:1324-1 (flash-player)
2012-12-13 00:00:00
Adobe Flash Player Multiple Vulnerabilities - Oct12 (Linux)
2012-10-15 00:00:00
suse
suse
Security update for flash-player (critical)
2012-10-10 21:08:48
Security update for flash-player (critical)
2012-10-13 06:08:49
flash-player: Update to 11.2.202.243 (critical)
2012-10-10 14:08:40
redhat
redhat
(RHSA-2012:1346) Critical: flash-plugin security update
2012-10-09 00:00:00
freebsd
freebsd
linux-flashplugin -- multiple vulnerabilities
2012-10-08 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2013-09-14 00:00:00
prion
prion
Buffer overflow
2012-10-09 11:13:00
Buffer overflow
2012-10-09 11:13:00
Buffer overflow
2012-10-09 11:13:00
ubuntucve
ubuntucve
CVE-2012-5248
2012-10-09 00:00:00
CVE-2012-5256
2012-10-09 00:00:00
CVE-2012-5255
2012-10-09 00:00:00
cve
cve
CVE-2012-5253
2012-10-09 11:13:00
CVE-2012-5248
2012-10-09 11:13:00
CVE-2012-5264
2012-10-09 11:13:00
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player OP_inclocal and OP_declocal Memory Corruption (APSB12-22; CVE-2012-5271)
2012-12-16 00:00:00
Adobe Flash Player OP_inclocal and OP_declocal Memory Corruption (APSB12-22) - Ver2 (CVE-2012-5271)
2014-12-28 00:00:00
Adobe Flash Player JPEG Parsing Buffer Overflow (APSB22-12; CVE-2012-5267)
2012-12-30 00:00:00
JSON
Related for SUSE_FLASH-PLAYER-8314.NASL
nessus12openvas15suse4redhat1freebsd1gentoo1prion25ubuntucve25cve25checkpoint_advisories8