Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2013 Greenbone AGOPENVAS:1361412562310803662
HistoryJun 18, 2013 - 12:00 a.m.

Adobe Flash Player Remote Code Execution Vulnerability (Jun 2013) - Linux

2013-06-1800:00:00
Copyright (C) 2013 Greenbone AG
plugins.openvas.org
7

7.2 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.018 Low

EPSS

Percentile

88.0%

JSON

Adobe Flash Player is prone to a remote code execution (RCE) vulnerability.

# SPDX-FileCopyrightText: 2013 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.803662");
  script_version("2024-02-08T14:36:53+0000");
  script_cve_id("CVE-2013-3343");
  script_tag(name:"cvss_base", value:"10.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_tag(name:"last_modification", value:"2024-02-08 14:36:53 +0000 (Thu, 08 Feb 2024)");
  script_tag(name:"creation_date", value:"2013-06-18 13:32:47 +0530 (Tue, 18 Jun 2013)");
  script_name("Adobe Flash Player Remote Code Execution Vulnerability (Jun 2013) - Linux");
  script_xref(name:"URL", value:"http://secunia.com/advisories/53751");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/60478");
  script_xref(name:"URL", value:"http://www.adobe.com/support/security/bulletins/apsb13-16.html");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2013 Greenbone AG");
  script_family("General");
  script_dependencies("gb_adobe_flash_player_detect_lin.nasl");
  script_mandatory_keys("AdobeFlashPlayer/Linux/Ver");
  script_tag(name:"impact", value:"Successful exploitation will allow remote attackers to execute arbitrary
  code on the target system or cause a denial of service (memory corruption)
  via unspecified vectors.");
  script_tag(name:"affected", value:"Adobe Flash Player version 10.3.183.86 and earlier and 11.x to 11.2.202.285
  on Linux");
  script_tag(name:"insight", value:"Unspecified flaw due to improper sanitization of user-supplied input.");
  script_tag(name:"solution", value:"Update to Adobe Flash Player 10.3.183.90 or 11.2.202.291 or later.");
  script_tag(name:"summary", value:"Adobe Flash Player is prone to a remote code execution (RCE) vulnerability.");
  script_tag(name:"qod_type", value:"executable_version");
  script_tag(name:"solution_type", value:"VendorFix");

  exit(0);
}


include("version_func.inc");

playerVer = get_kb_item("AdobeFlashPlayer/Linux/Ver");
if(playerVer)
{
  if(version_is_less_equal(version:playerVer, test_version:"10.3.183.86") ||
     version_in_range(version:playerVer, test_version:"11.0", test_version2:"11.2.202.285"))
  {
    security_message( port: 0, data: "The target host was found to be vulnerable" );
    exit(0);
  }
}

Related

openvas 12
nessus 11
mageia 1
freebsd 1
redhat 1
ubuntucve 1
suse 2
checkpoint_advisories 1
prion 1
cve 1
securityvulns 1
gentoo 1
openvas
openvas
Adobe Flash Player Remote Code Execution Vulnerability -June13 (Windows)
2013-06-18 00:00:00
Adobe Flash Player Remote Code Execution Vulnerability (Jun 2013) - Windows
2013-06-18 00:00:00
Adobe Flash Player Remote Code Execution Vulnerability (Jun 2013) - Mac OS X
2013-06-18 00:00:00
nessus
nessus
openSUSE Security Update : flash-player (openSUSE-SU-2013:1063-1)
2014-06-13 00:00:00
Flash Player <= 10.3.183.86 / 11.7.700.202 Memory Corruption (APSB13-16)
2013-06-11 00:00:00
Adobe AIR for Mac <= 3.7.0.1860 Memory Corruption (APSB13-16)
2013-06-11 00:00:00
mageia
mageia
Updated flash-player-plugin package fixes memory corruption vulnerability
2013-06-19 14:30:28
freebsd
freebsd
linux-flashplugin -- multiple vulnerabilities
2013-06-11 00:00:00
redhat
redhat
(RHSA-2013:0941) Critical: flash-plugin security update
2013-06-12 00:00:00
ubuntucve
ubuntucve
CVE-2013-3343
2013-06-12 00:00:00
suse
suse
Security update for flash-player (important)
2013-07-01 20:04:15
Security update for flash-player (important)
2013-06-18 20:04:17
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Memory Corruption (APSB13-16; CVE-2013-3343)
2013-06-23 00:00:00
prion
prion
Memory corruption
2013-06-12 03:30:00
cve
cve
CVE-2013-3343
2013-06-12 03:30:00
securityvulns
securityvulns
Adobe Shockwave Player multiple security vulnerabilities
2013-07-15 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2013-09-14 00:00:00

7.2 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.018 Low

EPSS

Percentile

88.0%

JSON
Related for OPENVAS:1361412562310803662
openvas12nessus11mageia1freebsd1redhat1ubuntucve1suse2checkpoint_advisories1prion1cve1securityvulns1gentoo1