Lucene search
Copyright (C) 2012 E-Soft Inc.OPENVAS:136141256231072611HistoryNov 26, 2012 - 12:00 a.m.
FreeBSD Ports: linux-f10-flashplugin
2012-11-2600:00:00
Copyright (C) 2012 E-Soft Inc.
plugins.openvas.org
10
The remote host is missing an update to the system
as announced in the referenced advisory.
# SPDX-FileCopyrightText: 2012 E-Soft Inc.
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.72611");
script_tag(name:"cvss_base", value:"10.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_xref(name:"CISA", value:"Known Exploited Vulnerability (KEV) catalog");
script_xref(name:"URL", value:"https://www.cisa.gov/known-exploited-vulnerabilities-catalog");
script_cve_id("CVE-2012-5248", "CVE-2012-5249", "CVE-2012-5250", "CVE-2012-5251", "CVE-2012-5252", "CVE-2012-5253", "CVE-2012-5254", "CVE-2012-5255", "CVE-2012-5256", "CVE-2012-5257", "CVE-2012-5258", "CVE-2012-5259", "CVE-2012-5260", "CVE-2012-5261", "CVE-2012-5262", "CVE-2012-5263", "CVE-2012-5264", "CVE-2012-5265", "CVE-2012-5266", "CVE-2012-5267", "CVE-2012-5269", "CVE-2012-5270", "CVE-2012-5271", "CVE-2012-5272", "CVE-2012-5285", "CVE-2012-5286", "CVE-2012-5287", "CVE-2012-5673", "CVE-2012-2034", "CVE-2012-2035", "CVE-2012-2036", "CVE-2012-2037", "CVE-2012-2038", "CVE-2012-2039", "CVE-2012-2040");
script_version("2023-07-26T05:05:09+0000");
script_tag(name:"last_modification", value:"2023-07-26 05:05:09 +0000 (Wed, 26 Jul 2023)");
script_tag(name:"creation_date", value:"2012-11-26 12:47:33 -0500 (Mon, 26 Nov 2012)");
script_name("FreeBSD Ports: linux-f10-flashplugin");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2012 E-Soft Inc.");
script_family("FreeBSD Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/freebsd", "ssh/login/freebsdrel");
script_tag(name:"insight", value:"The following package is affected: linux-f10-flashplugin
CVE-2012-5248
Buffer overflow in Adobe Flash Player before 10.3.183.29 and 11.x
before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 and
11.x before 11.2.202.243 on Linux, before 11.1.111.19 on Android 2.x
and 3.x, and before 11.1.115.20 on Android 4.x, Adobe AIR before
3.4.0.2710, and Adobe AIR SDK before 3.4.0.2710 allows attackers to
execute arbitrary code via unspecified vectors, a different
vulnerability than other Flash Player buffer overflow CVEs listed in
APSB12-22.
CVE-2012-5249
Buffer overflow in Adobe Flash Player before 10.3.183.29 and 11.x
before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 and
11.x before 11.2.202.243 on Linux, before 11.1.111.19 on Android 2.x
and 3.x, and before 11.1.115.20 on Android 4.x, Adobe AIR before
3.4.0.2710, and Adobe AIR SDK before 3.4.0.2710 allows attackers to
execute arbitrary code via unspecified vectors, a different
vulnerability than other Flash Player buffer overflow CVEs listed in
APSB12-22.
CVE-2012-5250
Buffer overflow in Adobe Flash Player before 10.3.183.29 and 11.x
before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 and
11.x before 11.2.202.243 on Linux, before 11.1.111.19 on Android 2.x
and 3.x, and before 11.1.115.20 on Android 4.x, Adobe AIR before
3.4.0.2710, and Adobe AIR SDK before 3.4.0.2710 allows attackers to
execute arbitrary code via unspecified vectors, a different
vulnerability than other Flash Player buffer overflow CVEs listed in
APSB12-22.
Text truncated. Please see the references for more information.");
script_tag(name:"solution", value:"Update your system with the appropriate patches or
software upgrades.");
script_xref(name:"URL", value:"https://www.adobe.com/support/security/bulletins/apsb12-22.html");
script_xref(name:"URL", value:"http://www.vuxml.org/freebsd/36533a59-2770-11e2-bb44-003067b2972c.html");
script_tag(name:"summary", value:"The remote host is missing an update to the system
as announced in the referenced advisory.");
script_tag(name:"qod_type", value:"package");
script_tag(name:"solution_type", value:"VendorFix");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-bsd.inc");
vuln = FALSE;
txt = "";
bver = portver(pkg:"linux-f10-flashplugin");
if(!isnull(bver) && revcomp(a:bver, b:"11.2r202.238")<=0) {
txt += "Package linux-f10-flashplugin version " + bver + " is installed which is known to be vulnerable.\n";
vuln = TRUE;
}
if(vuln) {
security_message(data:txt);
} else if (__pkg_match) {
exit(99);
}Related
openvas
openvas
FreeBSD Ports: linux-f10-flashplugin
2012-11-26 00:00:00
Adobe Flash Player Multiple Vulnerabilities (Oct 2012) - Linux
2012-10-15 00:00:00
Adobe Flash Player Multiple Vulnerabilities - October 12 (Windows)
2012-10-15 00:00:00
nessus
nessus
freebsd
freebsd
linux-flashplugin -- multiple vulnerabilities
2012-10-08 00:00:00
linux-flashplugin -- multiple vulnerabilities
2012-06-08 00:00:00
redhat
redhat
(RHSA-2012:1346) Critical: flash-plugin security update
2012-10-09 00:00:00
(RHSA-2012:0722) Critical: flash-plugin security update
2012-06-12 00:00:00
suse
suse
Security update for flash-player (critical)
2012-10-13 06:08:49
Security update for flash-player (critical)
2012-10-10 21:08:48
flash-player: Update to 11.2.202.243 (critical)
2012-10-10 14:08:40
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2012-06-23 00:00:00
Adobe Flash Player: Multiple vulnerabilities
2013-09-14 00:00:00
attackerkb
attackerkb
CVE-2012-2034
2012-06-09 00:00:00
CVE-2012-2037
2012-06-09 00:00:00
prion
prion
Memory corruption
2012-06-09 00:55:00
Memory corruption
2012-06-09 00:55:00
Buffer overflow
2012-10-09 11:13:00
cvelist
cvelist
cve
cve
ubuntucve
ubuntucve
checkpoint_advisories
checkpoint_advisories
cisa_kev
cisa_kev
Adobe Flash Player Memory Corruption Vulnerability
2022-03-28 00:00:00
jvn
jvn
seebug
seebug
Adobe Flash Playerδ»»ζ代η ζ§θ‘ζΌζ΄
2012-06-11 00:00:00
6.7 Medium
AI Score
Confidence
Low
0.525 Medium
EPSS
Percentile
97.6%
Related for OPENVAS:136141256231072611