Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2011 Greenbone AGOPENVAS:1361412562310802301
HistoryJun 21, 2011 - 12:00 a.m.

Adobe Shockwave Player Multiple Unspecified Vulnerabilities

2011-06-2100:00:00
Copyright (C) 2011 Greenbone AG
plugins.openvas.org
7

8.9 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.557 Medium

EPSS

Percentile

97.6%

JSON

Adobe Shockwave Player is prone to multiple unspecified vulnerabilities.

# SPDX-FileCopyrightText: 2011 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.802301");
  script_version("2023-07-28T05:05:23+0000");
  script_tag(name:"last_modification", value:"2023-07-28 05:05:23 +0000 (Fri, 28 Jul 2023)");
  script_tag(name:"creation_date", value:"2011-06-21 13:52:36 +0200 (Tue, 21 Jun 2011)");
  script_cve_id("CVE-2011-0317", "CVE-2011-0318", "CVE-2011-0319", "CVE-2011-0320",
                "CVE-2011-0335", "CVE-2011-2108", "CVE-2011-2109", "CVE-2011-2111",
                "CVE-2011-2112", "CVE-2011-2113", "CVE-2011-2114", "CVE-2011-2115",
                "CVE-2011-2118", "CVE-2011-2119", "CVE-2011-2120", "CVE-2011-2121",
                "CVE-2011-2122", "CVE-2011-2123", "CVE-2011-2124", "CVE-2011-2125",
                "CVE-2011-2126", "CVE-2011-2127", "CVE-2011-2128");
  script_tag(name:"cvss_base", value:"9.3");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_name("Adobe Shockwave Player Multiple Unspecified Vulnerabilities");
  script_xref(name:"URL", value:"http://www.adobe.com/support/security/bulletins/apsb11-17.html");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/48273");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/48275");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/48278");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/48284");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/48286");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/48287");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/48288");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/48289");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/48290");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/48294");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/48296");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/48297");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/48298");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/48299");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/48300");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/48302");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/48304");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/48306");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/48307");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/48308");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/48309");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/48310");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/48311");

  script_tag(name:"qod_type", value:"registry");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2011 Greenbone AG");
  script_family("General");
  script_dependencies("secpod_adobe_shockwave_player_detect.nasl");
  script_mandatory_keys("Adobe/ShockwavePlayer/Ver");

  script_tag(name:"impact", value:"Successful attack could allow attackers to execute of arbitrary code or
  cause a denial of service.");

  script_tag(name:"affected", value:"Adobe Shockwave Player version before 11.6.0.626 on Windows.");

  script_tag(name:"insight", value:"The flaws are due to unspecified vectors. Please see the references
  for more details.");

  script_tag(name:"solution", value:"Upgrade to Adobe Flash Player version 11.6.0.626 or later.");

  script_tag(name:"summary", value:"Adobe Shockwave Player is prone to multiple unspecified vulnerabilities.");

  script_tag(name:"solution_type", value:"VendorFix");

  exit(0);
}

include("version_func.inc");

shockVer = get_kb_item("Adobe/ShockwavePlayer/Ver");
if(!shockVer){
  exit(0);
}

if(version_is_less(version:shockVer, test_version:"11.6.0.626")){
  report = report_fixed_ver(installed_version:shockVer, fixed_version:"11.6.0.626");
  security_message(port: 0, data: report);
}

Related

openvas 3
nessus 2
securityvulns 30
prion 25
cve 25
zdi 23
checkpoint_advisories 2
gentoo 1
openvas
openvas
Adobe Shockwave Player Multiple Unspecified Vulnerabilities
2011-06-21 00:00:00
Gentoo Security Advisory GLSA 201110-11 (Adobe Flash Player)
2012-02-12 00:00:00
Gentoo Security Advisory GLSA 201110-11 (Adobe Flash Player)
2012-02-12 00:00:00
nessus
nessus
Adobe Shockwave Player <= 11.5.9.620 (APSB11-17) (Mac OS X)
2014-12-22 00:00:00
Shockwave Player < 11.6.0.626 (APSB11-17)
2011-06-15 00:00:00
securityvulns
securityvulns
Adobe Shockwave Player multiple security vulnerabilities
2011-06-19 00:00:00
ZDI-11-205: Adobe Shockwave Missing Lctx Chunk Remote Code Execution Vulnerability
2011-06-19 00:00:00
TPTI-11-10: Adobe Shockwave dirapi.dll rcsL Chunk Parsing Remote Code Execution Vulnerability
2011-06-19 00:00:00
prion
prion
Memory corruption
2011-06-16 23:55:00
Memory corruption
2011-06-16 23:55:00
Memory corruption
2011-06-16 23:55:00
cve
cve
CVE-2011-0335
2011-06-16 23:55:00
CVE-2011-2122
2011-06-16 23:55:00
CVE-2011-0318
2011-06-16 23:55:00
zdi
zdi
Adobe Shockwave Missing Lctx Chunk Remote Code Execution Vulnerability
2011-06-14 00:00:00
Adobe Shockwave Director File rcsL Chunk Multiple Opcode Parsing Remote Code Execution Vulnerability
2011-06-15 00:00:00
Adobe Shockwave rcsL Substructure Parsing Remote Code Execution Vulnerability
2011-06-14 00:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Shockwave Director tSAC Chunk String Termination Memory Corruption (CVE-2011-2118)
2011-07-17 00:00:00
Adobe Shockwave Director File KEY Chunk Parsing Buffer Overflow (APSB11-17; CVE-2011-2111)
2011-07-05 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2011-10-13 00:00:00

8.9 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.557 Medium

EPSS

Percentile

97.6%

JSON
Related for OPENVAS:1361412562310802301
openvas3nessus2securityvulns30prion25cve25zdi23checkpoint_advisories2gentoo1