Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2012 E-Soft Inc.OPENVAS:136141256231071158
HistoryMar 12, 2012 - 12:00 a.m.

FreeBSD Ports: linux-f10-flashplugin

2012-03-1200:00:00
Copyright (C) 2012 E-Soft Inc.
plugins.openvas.org
13

6.3 Medium

AI Score

Confidence

Low

0.016 Low

EPSS

Percentile

87.5%

JSON

The remote host is missing an update to the system
as announced in the referenced advisory.

# SPDX-FileCopyrightText: 2012 E-Soft Inc.
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.71158");
  script_tag(name:"cvss_base", value:"10.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_cve_id("CVE-2012-0768", "CVE-2012-0769");
  script_version("2023-07-26T05:05:09+0000");
  script_tag(name:"last_modification", value:"2023-07-26 05:05:09 +0000 (Wed, 26 Jul 2023)");
  script_tag(name:"creation_date", value:"2012-03-12 11:35:07 -0400 (Mon, 12 Mar 2012)");
  script_name("FreeBSD Ports: linux-f10-flashplugin");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2012 E-Soft Inc.");
  script_family("FreeBSD Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/freebsd", "ssh/login/freebsdrel");

  script_tag(name:"insight", value:"The following package is affected: linux-f10-flashplugin

CVE-2012-0768
The Matrix3D component in Adobe Flash Player before 10.3.183.16 and
11.x before 11.1.102.63 on Windows, Mac OS X, Linux, and Solaris,
before 11.1.111.7 on Android 2.x and 3.x, and before 11.1.115.7 on
Android 4.x allows attackers to execute arbitrary code or cause a
denial of service (memory corruption) via unspecified vectors.

CVE-2012-0769
Adobe Flash Player before 10.3.183.16 and 11.x before 11.1.102.63 on
Windows, Mac OS X, Linux, and Solaris, before 11.1.111.7 on Android
2.x and 3.x, and before 11.1.115.7 on Android 4.x does not properly
handle integers, which allows attackers to obtain sensitive
information via unspecified vectors.");

  script_tag(name:"solution", value:"Update your system with the appropriate patches or
  software upgrades.");

  script_xref(name:"URL", value:"https://www.adobe.com/support/security/bulletins/apsb12-05.html");
  script_xref(name:"URL", value:"http://www.vuxml.org/freebsd/9da3834b-6a50-11e1-91af-003067b2972c.html");

  script_tag(name:"summary", value:"The remote host is missing an update to the system
  as announced in the referenced advisory.");

  script_tag(name:"qod_type", value:"package");
  script_tag(name:"solution_type", value:"VendorFix");

  exit(0);
}

include("revisions-lib.inc");
include("pkg-lib-bsd.inc");

vuln = FALSE;
txt = "";

bver = portver(pkg:"linux-f10-flashplugin");
if(!isnull(bver) && revcomp(a:bver, b:"11.1r102.63")<0) {
  txt += "Package linux-f10-flashplugin version " + bver + " is installed which is known to be vulnerable.\n";
  vuln = TRUE;
}

if(vuln) {
  security_message(data:txt);
} else if (__pkg_match) {
  exit(99);
}

Related

nessus 12
suse 3
redhat 1
openvas 11
securityvulns 4
freebsd 1
threatpost 1
checkpoint_advisories 2
prion 2
cve 2
ubuntucve 2
cvelist 2
seebug 2
gentoo 1
nessus
nessus
FreeBSD : linux-flashplugin -- multiple vulnerabilities (9da3834b-6a50-11e1-91af-003067b2972c)
2012-03-12 00:00:00
RHEL 5 / 6 : flash-plugin (RHSA-2012:0359)
2012-03-07 00:00:00
openSUSE Security Update : flash-player (openSUSE-SU-2012:0349-1)
2014-06-13 00:00:00
suse
suse
flash-player (important)
2012-03-07 17:08:29
Security update for flash-player (important)
2012-03-07 19:08:22
Security update for flash-player (important)
2012-03-08 17:08:23
redhat
redhat
(RHSA-2012:0359) Critical: flash-plugin security update
2012-03-06 00:00:00
openvas
openvas
Adobe Flash Player Multiple Vulnerabilities (Mar 2012) - Linux
2012-03-12 00:00:00
Adobe Flash Player Multiple Vulnerabilities (Windows) - Mar12
2012-03-12 00:00:00
Adobe Flash Player Multiple Vulnerabilities (Linux) - Mar12
2012-03-12 00:00:00
securityvulns
securityvulns
Adobe Flash Player security vulnerabilities
2012-04-19 00:00:00
Security update available for Adobe Flash Player
2012-03-20 00:00:00
VUPEN Security Research - Adobe Flash Player &quot;Matrix3D&quot; Remote Memory Corruption &#40;CVE-2012-0768&#41;
2012-03-20 00:00:00
freebsd
freebsd
linux-flashplugin -- multiple vulnerabilities
2012-03-05 00:00:00
threatpost
threatpost
Adobe Issues Emergency Fix For Flash Player Vulnerabilities
2012-03-05 20:23:24
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Stage3D NULL Pointer Dereference (APSB12-05; CVE-2012-0768)
2012-03-12 00:00:00
Adobe Flash Player ActionScript3 Out Of Bounds Integer Overflow (APSB12-05; CVE-2012-0769)
2012-03-12 00:00:00
prion
prion
Design/Logic Flaw
2012-03-05 21:55:00
Memory corruption
2012-03-05 21:55:00
cve
cve
CVE-2012-0768
2012-03-05 21:55:00
CVE-2012-0769
2012-03-05 21:55:00
ubuntucve
ubuntucve
CVE-2012-0768
2012-03-05 00:00:00
CVE-2012-0769
2012-03-05 00:00:00
cvelist
cvelist
CVE-2012-0768
2012-03-05 21:00:00
CVE-2012-0769
2012-03-05 21:00:00
seebug
seebug
Adobe Flash Player 远程代码执行漏洞(CVE-2012-0768)
2012-03-06 00:00:00
Adobe Flash Player 远程代码执行漏洞(CVE-2012-0769)
2012-03-06 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2012-04-17 00:00:00

6.3 Medium

AI Score

Confidence

Low

0.016 Low

EPSS

Percentile

87.5%

JSON
Related for OPENVAS:136141256231071158
nessus12suse3redhat1openvas11securityvulns4freebsd1threatpost1checkpoint_advisories2prion2cve2ubuntucve2cvelist2seebug2gentoo1