Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (c) 2012 Greenbone Networks GmbHOPENVAS:881536
HistoryNov 15, 2012 - 12:00 a.m.

CentOS Update for nspluginwrapper CESA-2012:1459 centos6

2012-11-1500:00:00
Copyright (c) 2012 Greenbone Networks GmbH
plugins.openvas.org
6

0.01 Low

EPSS

Percentile

83.5%

JSON

Check for the Version of nspluginwrapper

###############################################################################
# OpenVAS Vulnerability Test
#
# CentOS Update for nspluginwrapper CESA-2012:1459 centos6 
#
# Authors:
# System Generated Check
#
# Copyright:
# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

include("revisions-lib.inc");
tag_insight = "nspluginwrapper is a utility which allows 32-bit plug-ins to run in a
  64-bit browser environment (a common example is Adobe's browser plug-in for
  presenting proprietary Flash files embedded in web pages). It includes the
  plug-in viewer and a tool for managing plug-in installations and updates.

  It was not possible for plug-ins wrapped by nspluginwrapper to discover
  whether the browser was running in Private Browsing mode. This flaw could
  lead to plug-ins wrapped by nspluginwrapper using normal mode while they
  were expected to run in Private Browsing mode. (CVE-2011-2486)
  
  This update also fixes the following bug:
  
  * When using the Adobe Reader web browser plug-in provided by the
  acroread-plugin package on a 64-bit system, opening Portable Document
  Format (PDF) files in Firefox could cause the plug-in to crash and a black
  window to be displayed where the PDF should be. Firefox had to be restarted
  to resolve the issue. This update implements a workaround in
  nspluginwrapper to automatically handle the plug-in crash, so that users
  no longer have to keep restarting Firefox. (BZ#869554)
  
  All users of nspluginwrapper are advised to upgrade to these updated
  packages, which upgrade nspluginwrapper to upstream version 1.4.4, and
  correct these issues. After installing the update, Firefox must be
  restarted for the changes to take effect.";

tag_affected = "nspluginwrapper on CentOS 6";
tag_solution = "Please Install the Updated Packages.";



if(description)
{
  script_xref(name : "URL" , value : "http://lists.centos.org/pipermail/centos-announce/2012-November/018992.html");
  script_id(881536);
  script_version("$Revision: 8257 $");
  script_tag(name:"last_modification", value:"$Date: 2017-12-29 07:29:46 +0100 (Fri, 29 Dec 2017) $");
  script_tag(name:"creation_date", value:"2012-11-15 11:42:30 +0530 (Thu, 15 Nov 2012)");
  script_cve_id("CVE-2011-2486");
  script_tag(name:"cvss_base", value:"5.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:P/A:N");
  script_xref(name: "CESA", value: "2012:1459");
  script_name("CentOS Update for nspluginwrapper CESA-2012:1459 centos6 ");

  script_tag(name: "summary" , value: "Check for the Version of nspluginwrapper");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (c) 2012 Greenbone Networks GmbH");
  script_family("CentOS Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/centos", "ssh/login/rpms");
  script_tag(name : "affected" , value : tag_affected);
  script_tag(name : "solution" , value : tag_solution);
  script_tag(name : "insight" , value : tag_insight);
  script_tag(name:"qod_type", value:"package");
  script_tag(name:"solution_type", value:"VendorFix");
  exit(0);
}


include("pkg-lib-rpm.inc");

release = get_kb_item("ssh/login/release");

res = "";
if(release == NULL){
  exit(0);
}

if(release == "CentOS6")
{

  if ((res = isrpmvuln(pkg:"nspluginwrapper", rpm:"nspluginwrapper~1.4.4~1.el6_3", rls:"CentOS6")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}

Related

openvas 4
ubuntucve 1
prion 1
nessus 5
centos 1
nvd 1
oraclelinux 1
cve 1
veracode 1
cvelist 1
redhat 1
openvas
openvas
CentOS Update for nspluginwrapper CESA-2012:1459 centos6
2012-11-15 00:00:00
RedHat Update for nspluginwrapper RHSA-2012:1459-01
2012-11-15 00:00:00
Oracle: Security Advisory (ELSA-2012-1459)
2015-10-06 00:00:00
ubuntucve
ubuntucve
CVE-2011-2486
2012-11-19 00:00:00
prion
prion
Design/Logic Flaw
2012-11-19 12:10:00
nessus
nessus
RHEL 5 : nspluginwrapper (Unpatched Vulnerability)
2024-06-03 00:00:00
Scientific Linux Security Update : nspluginwrapper on SL6.x i386/x86_64 (20121113)
2012-11-14 00:00:00
RHEL 6 : nspluginwrapper (RHSA-2012:1459)
2012-11-14 00:00:00
centos
centos
nspluginwrapper security update
2012-11-13 17:16:20
nvd
nvd
CVE-2011-2486
2012-11-19 12:10:48
oraclelinux
oraclelinux
nspluginwrapper security and bug fix update
2012-11-13 00:00:00
cve
cve
CVE-2011-2486
2012-11-19 12:10:48
veracode
veracode
Authorization Bypass
2019-01-15 08:59:57
cvelist
cvelist
CVE-2011-2486
2012-11-19 11:00:00
redhat
redhat
(RHSA-2012:1459) Low: nspluginwrapper security and bug fix update
2012-11-13 00:00:00

0.01 Low

EPSS

Percentile

83.5%

JSON
Related for OPENVAS:881536
openvas4ubuntucve1prion1nessus5centos1nvd1oraclelinux1cve1veracode1cvelist1redhat1