Lucene search
Copyright (C) 2014 Greenbone AGOPENVAS:1361412562310804096HistoryFeb 13, 2014 - 12:00 a.m.
Adobe Shockwave Player Multiple Memory Corruption Vulnerabilities (Feb 2014) - Windows
2014-02-1300:00:00
Copyright (C) 2014 Greenbone AG
plugins.openvas.org
10
6.8 Medium
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.073 Low
EPSS
Percentile
94.0%
Adobe Shockwave Player is prone to multiple memory corruption vulnerabilities.
# SPDX-FileCopyrightText: 2014 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
CPE = "cpe:/a:adobe:shockwave_player";
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.804096");
script_version("2024-02-09T05:06:25+0000");
script_cve_id("CVE-2014-0500", "CVE-2014-0501");
script_tag(name:"cvss_base", value:"10.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_tag(name:"last_modification", value:"2024-02-09 05:06:25 +0000 (Fri, 09 Feb 2024)");
script_tag(name:"creation_date", value:"2014-02-13 12:25:40 +0530 (Thu, 13 Feb 2014)");
script_name("Adobe Shockwave Player Multiple Memory Corruption Vulnerabilities (Feb 2014) - Windows");
script_tag(name:"summary", value:"Adobe Shockwave Player is prone to multiple memory corruption vulnerabilities.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");
script_tag(name:"insight", value:"Flaws are due to multiple unspecified errors.");
script_tag(name:"impact", value:"Successful exploitation will allow attackers to execute arbitrary code, cause
memory corruption and compromise a user's system.");
script_tag(name:"affected", value:"Adobe Shockwave Player version before 12.0.9.149 on Windows.");
script_tag(name:"solution", value:"Upgrade to version 12.0.9.149 or later.");
script_tag(name:"qod_type", value:"registry");
script_tag(name:"solution_type", value:"VendorFix");
script_xref(name:"URL", value:"http://secunia.com/advisories/56740");
script_xref(name:"URL", value:"http://www.securityfocus.com/bid/65490");
script_xref(name:"URL", value:"http://www.securityfocus.com/bid/65493");
script_xref(name:"URL", value:"http://helpx.adobe.com/security/products/shockwave/apsb14-06.html");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2014 Greenbone AG");
script_family("General");
script_dependencies("secpod_adobe_shockwave_player_detect.nasl");
script_mandatory_keys("Adobe/ShockwavePlayer/Ver");
exit(0);
}
include("host_details.inc");
include("version_func.inc");
if(!vers = get_app_version(cpe:CPE))
exit(0);
if(version_is_less(version:vers, test_version:"12.0.9.149")) {
report = report_fixed_ver(installed_version:vers, fixed_version:"12.0.9.149");
security_message(port:0, data:report);
exit(0);
}
Related
thn
thn
prion
prion
Memory corruption
2014-02-12 04:50:00
Memory corruption
2014-02-12 04:50:00
nessus
nessus
seebug
seebug
Adobe Shockwave Playerε
εη ΄εζΌζ΄(CVE-2014-0501)
2014-02-13 00:00:00
Adobe Shockwave Playerε
εη ΄εζΌζ΄(CVE-2014-0500)
2014-02-13 00:00:00
threatpost
threatpost
Adobe Patches Shockwave, Fixes Two Vulnerabilities
2014-02-11 13:52:56
cve
cve
CVE-2014-0501
2014-02-12 04:50:00
CVE-2014-0500
2014-02-12 04:50:00
adobe
adobe
APSB14-06 Security update available for Adobe Shockwave Player
2014-02-11 00:00:00
openvas
openvas
6.8 Medium
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.073 Low
EPSS
Percentile
94.0%
Related for OPENVAS:1361412562310804096