Lucene search

Adobe Flash Player Within Google Chrome Security Update (APSB20-30) - Linux

Adobe Flash Player update for Google Chrome on Linu

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 32
Tenable Nessus	KB4561600: Security update for Adobe Flash Player (June 2020)	9 Jun 202000:00	–	nessus
Tenable Nessus	CentOS 6 : flash-plugin (RHSA-2020:2547)	9 Oct 202400:00	–	nessus
Tenable Nessus	GLSA-202006-09 : Adobe Flash Player: Arbitrary code execution	17 Jun 202000:00	–	nessus
Tenable Nessus	Adobe Flash Player for Mac <= 32.0.0.371 (APSB20-30)	9 Jun 202000:00	–	nessus
Tenable Nessus	Adobe Flash Player <= 32.0.0.371 (APSB20-30)	9 Jun 202000:00	–	nessus
Tenable Nessus	RHEL 6 : flash-plugin (RHSA-2020:2547)	17 Jun 202000:00	–	nessus
Tenable Nessus	FreeBSD : Flash Player -- arbitrary code execution (196b31b8-aa9a-11ea-a59a-6451062f0f7a)	10 Jun 202000:00	–	nessus
UbuntuCve	CVE-2020-9633	12 Jun 202000:00	–	ubuntucve
OSV	RHSA-2020:2547 Red Hat Security Advisory: flash-plugin security update	13 Sep 202422:41	–	osv
RedHat Linux	(RHSA-2020:2547) Critical: flash-plugin security update	15 Jun 202009:27	–	redhat

Source	Link
helpx	www.helpx.adobe.com/security/products/flash-player/apsb20-30.html

# Copyright (C) 2020 Greenbone Networks GmbH
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-or-later
#
# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License
# as published by the Free Software Foundation; either version 2
# of the License, or (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.

CPE = "cpe:/a:adobe:flash_player_chrome";

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.817151");
  script_version("2021-10-05T11:36:17+0000");
  script_cve_id("CVE-2020-9633");
  script_tag(name:"cvss_base", value:"10.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_tag(name:"last_modification", value:"2021-10-05 11:36:17 +0000 (Tue, 05 Oct 2021)");
  script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2020-07-06 14:15:00 +0000 (Mon, 06 Jul 2020)");
  script_tag(name:"creation_date", value:"2020-06-10 08:52:23 +0530 (Wed, 10 Jun 2020)");
  script_name("Adobe Flash Player Within Google Chrome Security Update (APSB20-30) - Linux");

  script_tag(name:"summary", value:"Adobe Flash Player is prone to an arbitrary code execution vulnerability.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present
  on the target host.");

  script_tag(name:"insight", value:"The flaw exists due to a use-after-free error.");

  script_tag(name:"impact", value:"Successful exploitation allows attackers to
  execute arbitrary code.");

  script_tag(name:"affected", value:"Adobe Flash Player prior to 32.0.0.387
  within Google Chrome.");

  script_tag(name:"solution", value:"Update to Adobe Flash Player for Google Chrome
  32.0.0.387 or later.");

  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"qod_type", value:"executable_version");
  script_xref(name:"URL", value:"https://helpx.adobe.com/security/products/flash-player/apsb20-30.html");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2020 Greenbone Networks GmbH");
  script_family("General");
  script_dependencies("gb_flash_player_within_google_chrome_detect_lin.nasl");
  script_mandatory_keys("AdobeFlashPlayer/Chrome/Lin/Ver");
  exit(0);
}

include("host_details.inc");
include("version_func.inc");

if(!infos = get_app_version_and_location(cpe:CPE, exit_no_version:TRUE))
  exit(0);

vers = infos["version"];
path = infos["location"];

if(version_is_less(version:vers, test_version:"32.0.0.387")) {
  report = report_fixed_ver(installed_version:vers, fixed_version:"32.0.0.387", install_path:path);
  security_message(port:0, data:report);
  exit(0);
}

exit(99);

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

10 Jun 2020 00:00Current

9.8High risk

Vulners AI Score9.8

CVSS210

CVSS39.8

EPSS0.075