Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2013 Greenbone AGOPENVAS:1361412562310804148
HistoryNov 19, 2013 - 12:00 a.m.

Adobe AIR Code Execution and DoS Vulnerabilities (Nov 2013) - Windows

2013-11-1900:00:00
Copyright (C) 2013 Greenbone AG
plugins.openvas.org
15

7.6 High

AI Score

Confidence

Low

0.191 Low

EPSS

Percentile

96.2%

JSON

Adobe AIR is prone to remote code execution and denial of service vulnerabilities.

# SPDX-FileCopyrightText: 2013 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

CPE = "cpe:/a:adobe:adobe_air";

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.804148");
  script_version("2024-02-09T05:06:25+0000");
  script_cve_id("CVE-2013-5329", "CVE-2013-5330");
  script_tag(name:"cvss_base", value:"10.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_tag(name:"last_modification", value:"2024-02-09 05:06:25 +0000 (Fri, 09 Feb 2024)");
  script_tag(name:"creation_date", value:"2013-11-19 15:16:28 +0530 (Tue, 19 Nov 2013)");
  script_name("Adobe AIR Code Execution and DoS Vulnerabilities (Nov 2013) - Windows");


  script_tag(name:"summary", value:"Adobe AIR is prone to remote code execution and denial of service vulnerabilities.");
  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");
  script_tag(name:"solution", value:"Update to Adobe AIR version 3.9.0.1210 or later.");
  script_tag(name:"insight", value:"Flaws are due to multiple unspecified errors.");
  script_tag(name:"affected", value:"Adobe AIR before 3.9.0.1210 on Windows");
  script_tag(name:"impact", value:"Successful exploitation will allow attackers to execute arbitrary code, cause
denial of service (memory corruption) and compromise a user's system.");
  script_tag(name:"qod_type", value:"registry");
  script_tag(name:"solution_type", value:"VendorFix");

  script_xref(name:"URL", value:"http://secunia.com/advisories/55527");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/63680");
  script_xref(name:"URL", value:"http://www.adobe.com/support/security/bulletins/apsb13-26.html");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2013 Greenbone AG");
  script_family("General");
  script_dependencies("gb_adobe_flash_player_detect_win.nasl");
  script_mandatory_keys("Adobe/Air/Win/Installed");
  exit(0);
}

include("host_details.inc");
include("version_func.inc");

if(!vers = get_app_version(cpe:CPE))
  exit(0);

if(version_is_less(version:vers, test_version:"3.9.0.1210")) {
  report = report_fixed_ver(installed_version:vers, fixed_version:"3.9.0.1210");
  security_message(port: 0, data: report);
  exit(0);
}

Related

nessus 10
openvas 8
ubuntucve 2
redhat 1
cve 2
prion 2
suse 3
freebsd 1
mageia 1
cvelist 2
checkpoint_advisories 2
zdi 1
seebug 1
gentoo 1
thn 2
nessus
nessus
Adobe AIR for Mac <= 3.9.0.1030 Memory Corruptions (APSB13-26)
2013-11-13 00:00:00
RHEL 5 / 6 : flash-plugin (RHSA-2013:1518)
2013-11-14 00:00:00
SuSE 11.2 / 11.3 Security Update : flash-player (SAT Patch Numbers 8554 / 8555)
2013-11-18 00:00:00
openvas
openvas
SuSE Update for flash-player openSUSE-SU-2013:1717-1 (flash-player)
2013-11-19 00:00:00
Adobe Flash Player Code Execution and DoS Vulnerabilities (Nov 2013) - Windows
2013-11-19 00:00:00
openSUSE: Security Advisory for flash-player (openSUSE-SU-2013:1717-1)
2013-11-19 00:00:00
ubuntucve
ubuntucve
CVE-2013-5329
2013-11-13 00:00:00
CVE-2013-5330
2013-11-13 00:00:00
redhat
redhat
(RHSA-2013:1518) Critical: flash-plugin security update
2013-11-13 00:00:00
cve
cve
CVE-2013-5329
2013-11-13 01:55:00
CVE-2013-5330
2013-11-13 01:55:00
prion
prion
Memory corruption
2013-11-13 01:55:00
Memory corruption
2013-11-13 01:55:00
suse
suse
flash-player to 11.2.202.327 (important)
2013-11-17 15:04:11
flash-player to 11.2.202.327 (important)
2013-11-21 12:04:14
Security update for flash-player (important)
2013-11-16 00:04:14
freebsd
freebsd
linux-flashplugin -- multiple vulnerabilities
2013-11-12 00:00:00
mageia
mageia
Updated flash-player-plugin packages fix multiple security vulnerabilities
2013-11-18 18:44:16
cvelist
cvelist
CVE-2013-5329
2013-11-13 01:00:00
CVE-2013-5330
2013-11-13 01:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Memory Corruption (APSB13-26: CVE-2013-5329)
2013-12-29 00:00:00
Adobe Flash Player Memory Corruption (APSB13-26; CVE-2013-5330)
2014-02-17 00:00:00
zdi
zdi
Adobe Flash Player Memory Corruption Remote Code Execution Vulnerability
2013-12-15 00:00:00
seebug
seebug
Adobe Flash Player及AIRθΏœη¨‹ε†…ε­˜η ΄εζΌζ΄ž(CVE-2013-5330)(apsb13-26)
2013-11-17 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2014-02-06 00:00:00
thn
thn
Security updates for available for Adobe Flash Player and ColdFusion vulnerabilities
2013-11-13 16:22:00
Security updates for available for Adobe Flash Player and ColdFusion vulnerabilities
2013-11-13 05:22:00

7.6 High

AI Score

Confidence

Low

0.191 Low

EPSS

Percentile

96.2%

JSON
Related for OPENVAS:1361412562310804148
nessus10openvas8ubuntucve2redhat1cve2prion2suse3freebsd1mageia1cvelist2checkpoint_advisories2zdi1seebug1gentoo1thn2