Adobe Flash Player Multiple Security Bypass Vulnerabilities (Windows)

Adobe Flash Player Multiple Security Bypass Vulnerabilities (Windows). Successful attack could allow malicious people to bypass certain security restrictions or manipulate data

Reporter	Title	Published	Views	Family All 120
Tenable Nessus	Flash Player < 9.0.115.0 / 7.0.73.0 APSB07-20 Multiple Vulnerabilities	19 Dec 200700:00	–	nessus
Tenable Nessus	Flash Player < 9.0.124.0 APSB08-11 Multiple Vulnerabilities	14 Apr 200800:00	–	nessus
Tenable Nessus	Flash Player APSB08-18 / APSB08-20 Multiple Vulnerabilities	12 Nov 200800:00	–	nessus
Tenable Nessus	Adobe AIR APSB08-23 / APSB08-22 / APSB08-20 / APSB08-18 Multiple Vulnerabilities	18 Nov 200800:00	–	nessus
Tenable Nessus	Adobe AIR < 1.5 Multiple Vulnerabilities (APSB08-23)	18 Nov 200800:00	–	nessus
Tenable Nessus	Flash Player < 7.0.73.0 / 9.0.115.0 Multiple Vulnerabilities (APSB07-20)	19 Dec 200700:00	–	nessus
Tenable Nessus	Flash Player < 8.0.42.0 / 9.0.124.0 Multiple Vulnerabilities (APSB08-11)	10 Apr 200800:00	–	nessus
Tenable Nessus	Flash Player < 9.0.151.0 / 10.0.12.36 Multiple Vulnerabilities (APSB08-18 / APSB08-20 / APSB08-22)	11 Nov 200800:00	–	nessus
Tenable Nessus	FreeBSD : linux-flashplugin -- multiple vulnerabilities (562cf6c4-b9f1-11dc-a302-000102cc8983)	4 Jan 200800:00	–	nessus
Tenable Nessus	FreeBSD : linux-flashplugin -- multiple vulnerabilities (78f456fd-9c87-11dd-a55e-00163e000016)	20 Oct 200800:00	–	nessus

Source	Link
adobe	www.adobe.com/support/security/bulletins/apsb08-18.html
adobe	www.adobe.com/support/security/advisories/apsa08-08.html
secunia	www.secunia.com/advisories/32163/
blogs	www.blogs.adobe.com/psirt/2008/10/clickjacking_security_advisory.html

###############################################################################
# OpenVAS Vulnerability Test
# $Id: gb_adobe_flash_player_sec_bypass_vuln_win.nasl 8178 2017-12-19 13:42:38Z cfischer $
#
# Adobe Flash Player Multiple Security Bypass Vulnerabilities (Windows)
#
# Authors:
# Chandan S <[email protected]>
#
# Copyright:
# Copyright (c) 2008 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

CPE = "cpe:/a:adobe:flash_player";

tag_impact = "Successful attack could allow malicious people to bypass certain
  security restrictions or manipulate certain data.
  Impact Level: Application";
tag_affected = "Adobe Flash Player 9.x - 9.0.124.0 on Windows.";
tag_insight = "The flaws are due to,

  - a design error in the application allows access to the system's
    camera and microphone by tricking the user into clicking Flash Player
    access control dialogs disguised as normal graphical elements.

  - FileReference.browse() and FileReference.download() methods can be
    called without user interaction and can potentially be used
    to trick a user into downloading or uploading files.";
tag_solution = "Upgrade to Adobe Flash Player 10.0.12.36,
  http://www.adobe.com/downloads/";
tag_summary = "This host has Adobe Flash Player installed and is prone to
  multiple security bypass vulnerabilities.";

if(description)
{
  script_id(800027);
  script_version("$Revision: 8178 $");
  script_tag(name:"last_modification", value:"$Date: 2017-12-19 14:42:38 +0100 (Tue, 19 Dec 2017) $");
  script_tag(name:"creation_date", value:"2008-10-16 18:25:33 +0200 (Thu, 16 Oct 2008)");
  script_tag(name:"cvss_base", value:"10.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_cve_id("CVE-2007-6243", "CVE-2008-3873", "CVE-2007-4324",
                "CVE-2008-4401", "CVE-2008-4503");
  script_bugtraq_id(31117);
  script_name("Adobe Flash Player Multiple Security Bypass Vulnerabilities (Windows)");
  script_xref(name : "URL" , value : "http://secunia.com/advisories/32163/");
  script_xref(name : "URL" , value : "http://www.adobe.com/support/security/bulletins/apsb08-18.html");
  script_xref(name : "URL" , value : "http://www.adobe.com/support/security/advisories/apsa08-08.html");
  script_xref(name : "URL" , value : "http://blogs.adobe.com/psirt/2008/10/clickjacking_security_advisory.html");

  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2008 Greenbone Networks GmbH");
  script_family("General");
  script_dependencies("gb_adobe_flash_player_detect_win.nasl");
  script_mandatory_keys("AdobeFlashPlayer/Win/Installed");
  script_tag(name : "impact" , value : tag_impact);
  script_tag(name : "affected" , value : tag_affected);
  script_tag(name : "insight" , value : tag_insight);
  script_tag(name : "solution" , value : tag_solution);
  script_tag(name : "summary" , value : tag_summary);
  script_tag(name:"qod_type", value:"registry");
  script_tag(name:"solution_type", value:"VendorFix");
  exit(0);
}

include("host_details.inc");
include("version_func.inc");

infos = get_app_version_and_location( cpe:CPE, exit_no_version:TRUE );
vers = infos['version'];
path = infos['location'];

# Grep for versions 9.0.124.0 and prior
if( version_in_range( version:vers, test_version:"9.0", test_version2:"9.0.124.0" ) ) {
  report = report_fixed_ver( installed_version:vers, fixed_version:"10.0.12.36", install_path:path );
  security_message( port:0, data:report );
  exit( 0 );
}

exit( 99 );

19 Dec 2017 00:00Current

0.3Low risk

Vulners AI Score0.3

EPSS0.38894