{"id": "RHSA-2014:1981", "hash": "0206c46a6d94afa230ffade7ce7dc0b4", "type": "redhat", "bulletinFamily": "unix", "title": "(RHSA-2014:1981) Critical: flash-plugin security update", "description": "The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash\nPlayer web browser plug-in.\n\nThis update fixes multiple vulnerabilities in Adobe Flash Player. These\nvulnerabilities are detailed in the Adobe Security Bulletin APSB14-27,\nlisted in the References section.\n\nMultiple flaws were found in the way flash-plugin displayed certain SWF\ncontent. An attacker could use these flaws to create a specially crafted\nSWF file that would cause flash-plugin to crash or, potentially, execute\narbitrary code when the victim loaded a page containing the malicious SWF\ncontent. (CVE-2014-0587, CVE-2014-8443, CVE-2014-9163, CVE-2014-9164)\n\nA flaw in flash-plugin could allow an attacker to bypass the same-origin\npolicy. (CVE-2014-0580)\n\nThis update fixes an information disclosure flaw in flash-plugin.\n(CVE-2014-9162)\n\nAll users of Adobe Flash Player should install this updated package, which\nupgrades Flash Player to version 11.2.202.425.\n", "published": "2014-12-10T05:00:00", "modified": "2018-06-07T09:04:22", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://access.redhat.com/errata/RHSA-2014:1981", "reporter": "RedHat", "references": [], "cvelist": ["CVE-2014-0580", "CVE-2014-0587", "CVE-2014-8443", "CVE-2014-9162", "CVE-2014-9163", "CVE-2014-9164"], "lastseen": "2018-12-11T19:41:27", "history": [{"bulletin": {"id": "RHSA-2014:1981", "hash": "", "type": "redhat", "bulletinFamily": "unix", "title": "(RHSA-2014:1981) Critical: flash-plugin security update", "description": "The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash\nPlayer web browser plug-in.\n\nThis update fixes multiple vulnerabilities in Adobe Flash Player. These\nvulnerabilities are detailed in the Adobe Security Bulletin APSB14-27,\nlisted in the References section.\n\nMultiple flaws were found in the way flash-plugin displayed certain SWF\ncontent. An attacker could use these flaws to create a specially crafted\nSWF file that would cause flash-plugin to crash or, potentially, execute\narbitrary code when the victim loaded a page containing the malicious SWF\ncontent. (CVE-2014-0587, CVE-2014-8443, CVE-2014-9163, CVE-2014-9164)\n\nA flaw in flash-plugin could allow an attacker to bypass the same-origin\npolicy. (CVE-2014-0580)\n\nThis update fixes an information disclosure flaw in flash-plugin.\n(CVE-2014-9162)\n\nAll users of Adobe Flash Player should install this updated package, which\nupgrades Flash Player to version 11.2.202.425.\n", "published": "2014-12-10T05:00:00", "modified": "2017-03-03T17:17:57", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://access.redhat.com/errata/RHSA-2014:1981", "reporter": "RedHat", "references": [], "cvelist": ["CVE-2014-0587", "CVE-2014-0580", "CVE-2014-8443", "CVE-2014-9163", "CVE-2014-9162", "CVE-2014-9164"], "lastseen": "2017-03-04T19:18:45", "history": [], "viewCount": 2, "enchantments": {}, "objectVersion": "1.4", "affectedPackage": [{"packageFilename": "flash-plugin-11.2.202.425-1.el6.i686.rpm", "OS": "RedHat", "arch": "i686", "packageName": "flash-plugin", "OSVersion": "6", "packageVersion": "11.2.202.425-1.el6", "operator": "lt"}, {"packageFilename": "flash-plugin-11.2.202.425-1.el5.i386.rpm", "OS": "RedHat", "arch": "i386", "packageName": "flash-plugin", "OSVersion": "5", "packageVersion": "11.2.202.425-1.el5", "operator": "lt"}]}, "lastseen": "2017-03-04T19:18:45", "differentElements": ["affectedPackage", "modified"], "edition": 1}, {"bulletin": {"id": "RHSA-2014:1981", "hash": "", "type": "redhat", "bulletinFamily": "unix", "title": "(RHSA-2014:1981) Critical: flash-plugin security update", "description": "The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash\nPlayer web browser plug-in.\n\nThis update fixes multiple vulnerabilities in Adobe Flash Player. These\nvulnerabilities are detailed in the Adobe Security Bulletin APSB14-27,\nlisted in the References section.\n\nMultiple flaws were found in the way flash-plugin displayed certain SWF\ncontent. An attacker could use these flaws to create a specially crafted\nSWF file that would cause flash-plugin to crash or, potentially, execute\narbitrary code when the victim loaded a page containing the malicious SWF\ncontent. (CVE-2014-0587, CVE-2014-8443, CVE-2014-9163, CVE-2014-9164)\n\nA flaw in flash-plugin could allow an attacker to bypass the same-origin\npolicy. (CVE-2014-0580)\n\nThis update fixes an information disclosure flaw in flash-plugin.\n(CVE-2014-9162)\n\nAll users of Adobe Flash Player should install this updated package, which\nupgrades Flash Player to version 11.2.202.425.\n", "published": "2014-12-10T05:00:00", "modified": "2017-07-27T07:15:32", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://access.redhat.com/errata/RHSA-2014:1981", "reporter": "RedHat", "references": [], "cvelist": ["CVE-2014-0580", "CVE-2014-0587", "CVE-2014-8443", "CVE-2014-9162", "CVE-2014-9163", "CVE-2014-9164"], "lastseen": "2017-07-28T08:57:40", "history": [], "viewCount": 2, "enchantments": {}, "objectVersion": "1.4", "affectedPackage": [{"packageVersion": "11.2.202.425-1.el5", "packageName": "flash-plugin", "packageFilename": "flash-plugin-11.2.202.425-1.el5.i386.rpm", "arch": "i386", "operator": "lt", "OSVersion": "5", "OS": "RedHat"}]}, "lastseen": "2017-07-28T08:57:40", "differentElements": ["affectedPackage", "modified"], "edition": 2}, {"bulletin": {"id": "RHSA-2014:1981", "hash": "", "type": "redhat", "bulletinFamily": "unix", "title": "(RHSA-2014:1981) Critical: flash-plugin security update", "description": "The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash\nPlayer web browser plug-in.\n\nThis update fixes multiple vulnerabilities in Adobe Flash Player. These\nvulnerabilities are detailed in the Adobe Security Bulletin APSB14-27,\nlisted in the References section.\n\nMultiple flaws were found in the way flash-plugin displayed certain SWF\ncontent. An attacker could use these flaws to create a specially crafted\nSWF file that would cause flash-plugin to crash or, potentially, execute\narbitrary code when the victim loaded a page containing the malicious SWF\ncontent. (CVE-2014-0587, CVE-2014-8443, CVE-2014-9163, CVE-2014-9164)\n\nA flaw in flash-plugin could allow an attacker to bypass the same-origin\npolicy. (CVE-2014-0580)\n\nThis update fixes an information disclosure flaw in flash-plugin.\n(CVE-2014-9162)\n\nAll users of Adobe Flash Player should install this updated package, which\nupgrades Flash Player to version 11.2.202.425.\n", "published": "2014-12-10T05:00:00", "modified": "2017-09-08T11:48:29", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://access.redhat.com/errata/RHSA-2014:1981", "reporter": "RedHat", "references": [], "cvelist": ["CVE-2014-0580", "CVE-2014-0587", "CVE-2014-8443", "CVE-2014-9162", "CVE-2014-9163", "CVE-2014-9164"], "lastseen": "2017-09-08T08:04:55", "history": [], "viewCount": 3, "enchantments": {"score": {"value": 6.8, "vector": "NONE"}}, "objectVersion": "1.4", "affectedPackage": [{"packageVersion": "11.2.202.425-1.el5", "packageName": "flash-plugin", "packageFilename": "flash-plugin-11.2.202.425-1.el5.i386.rpm", "arch": "i386", "operator": "lt", "OSVersion": "5", "OS": "RedHat"}, {"packageVersion": "11.2.202.425-1.el6", "packageName": "flash-plugin", "packageFilename": "flash-plugin-11.2.202.425-1.el6.i686.rpm", "arch": "i686", "operator": "lt", "OSVersion": "6", "OS": "RedHat"}]}, "lastseen": "2017-09-08T08:04:55", "differentElements": ["modified"], "edition": 3}, {"bulletin": {"id": "RHSA-2014:1981", "hash": "da6aee4b56e9dd1ee6738ac69388765e", "type": "redhat", "bulletinFamily": "unix", "title": "(RHSA-2014:1981) Critical: flash-plugin security update", "description": "The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash\nPlayer web browser plug-in.\n\nThis update fixes multiple vulnerabilities in Adobe Flash Player. These\nvulnerabilities are detailed in the Adobe Security Bulletin APSB14-27,\nlisted in the References section.\n\nMultiple flaws were found in the way flash-plugin displayed certain SWF\ncontent. An attacker could use these flaws to create a specially crafted\nSWF file that would cause flash-plugin to crash or, potentially, execute\narbitrary code when the victim loaded a page containing the malicious SWF\ncontent. (CVE-2014-0587, CVE-2014-8443, CVE-2014-9163, CVE-2014-9164)\n\nA flaw in flash-plugin could allow an attacker to bypass the same-origin\npolicy. (CVE-2014-0580)\n\nThis update fixes an information disclosure flaw in flash-plugin.\n(CVE-2014-9162)\n\nAll users of Adobe Flash Player should install this updated package, which\nupgrades Flash Player to version 11.2.202.425.\n", "published": "2014-12-10T05:00:00", "modified": "2018-06-07T09:04:22", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://access.redhat.com/errata/RHSA-2014:1981", "reporter": "RedHat", "references": [], "cvelist": ["CVE-2014-0580", "CVE-2014-0587", "CVE-2014-8443", "CVE-2014-9162", "CVE-2014-9163", "CVE-2014-9164"], "lastseen": "2018-06-07T05:59:01", "history": [], "viewCount": 3, "enchantments": {"score": {"value": 6.8, "vector": "NONE"}}, "objectVersion": "1.4", "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "arch": "i386", "packageName": "flash-plugin", "packageVersion": "11.2.202.425-1.el5", "packageFilename": "flash-plugin-11.2.202.425-1.el5.i386.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "i686", "packageName": "flash-plugin", "packageVersion": "11.2.202.425-1.el6", "packageFilename": "flash-plugin-11.2.202.425-1.el6.i686.rpm", "operator": "lt"}]}, "lastseen": "2018-06-07T05:59:01", "differentElements": ["affectedPackage"], "edition": 4}], "viewCount": 3, "enchantments": {"score": {"value": 6.8, "vector": "NONE"}, "dependencies": {"references": [{"type": "nessus", "idList": ["MACOSX_GOOGLE_CHROME_39_0_2171_95.NASL", "MACOSX_FLASH_PLAYER_16_0_0_235.NASL", "SMB_KB3008925.NASL", "OPENSUSE-2014-766.NASL", "SUSE_11_FLASH-PLAYER-141214.NASL", "REDHAT-RHSA-2014-1981.NASL", "GOOGLE_CHROME_39_0_2171_95.NASL", "FLASH_PLAYER_APSB14-27.NASL", "GENTOO_GLSA-201412-07.NASL"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2014:1622-1", "SUSE-SU-2014:1650-1", "OPENSUSE-SU-2014:1629-1"]}, {"type": "archlinux", "idList": ["ASA-201412-13"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310805210", "OPENVAS:1361412562310850972", "OPENVAS:1361412562310805214", "OPENVAS:1361412562310805212", "OPENVAS:1361412562310121293", "OPENVAS:1361412562310805213", "OPENVAS:1361412562310805211"]}, {"type": "cve", "idList": ["CVE-2014-9164", "CVE-2014-9162", "CVE-2014-9163", "CVE-2014-8443", "CVE-2014-0587", "CVE-2014-0580"]}, {"type": "gentoo", "idList": ["GLSA-201412-07"]}, {"type": "symantec", "idList": ["SMNTC-71582"]}, {"type": "zdi", "idList": ["ZDI-14-416", "ZDI-14-417"]}, {"type": "zdt", "idList": ["1337DAY-ID-22988", "1337DAY-ID-22989"]}, {"type": "threatpost", "idList": ["THREATPOST:A612D2B3CACFBC22A53E82B3FA7D4072", "THREATPOST:9BE67D302F9BD9AE34466338ACE81308"]}], "modified": "2018-12-11T19:41:27"}, "vulnersScore": 6.8}, "objectVersion": "1.4", "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "arch": "i386", "packageName": "flash-plugin", "packageVersion": "11.2.202.425-1.el5", "packageFilename": "flash-plugin-11.2.202.425-1.el5.i386.rpm", "operator": "lt"}], "_object_type": "robots.models.redhat.RedHatBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"]}

{"suse": [{"lastseen": "2016-09-04T11:28:41", "bulletinFamily": "unix", "description": "This flash-player security update fixes the following issues:\n\n * Security update to 11.2.202.425 (bnc#909219):\n o APSB14-27, CVE-2014-0580, CVE-2014-0587, CVE-2014-8443,\n CVE-2014-9162, CVE-2014-9163, CVE-2014-9164\n\n Security Issues:\n\n * CVE-2014-0580\n &lt;<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0580\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0580</a>&gt;\n * CVE-2014-0587\n &lt;<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0587\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0587</a>&gt;\n * CVE-2014-8443\n &lt;<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8443\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8443</a>&gt;\n * CVE-2014-9162\n &lt;<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9162\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9162</a>&gt;\n * CVE-2014-9163\n &lt;<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9163\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9163</a>&gt;\n * CVE-2014-9164\n &lt;<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9164\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9164</a>&gt;\n\n", "modified": "2014-12-16T01:04:46", "published": "2014-12-16T01:04:46", "id": "SUSE-SU-2014:1650-1", "href": "http://lists.opensuse.org/opensuse-security-announce/2014-12/msg00018.html", "type": "suse", "title": "Security update for flash-player (important)", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T11:18:00", "bulletinFamily": "unix", "description": "Flash-player was updated to version 11.2.202.245 fixing numerous\n vulnerabilities:\n *memory corruption vulnerabilities that could lead to code execution\n (CVE-2014-0587, CVE-2014-9164).\n *use-after-free vulnerability that could lead to code execution\n (CVE-2014-8443).\n *stack-based buffer overflow vulnerability that could lead to code\n execution (CVE-2014-9163).\n *information disclosure vulnerability (CVE-2014-9162).\n *vulnerability that could be exploited to circumvent the same-origin\n policy (CVE-2014-0580).\n\n", "modified": "2014-12-12T00:05:07", "published": "2014-12-12T00:05:07", "id": "OPENSUSE-SU-2014:1622-1", "href": "http://lists.opensuse.org/opensuse-security-announce/2014-12/msg00013.html", "title": "Security update for flash-player (critical)", "type": "suse", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T12:19:06", "bulletinFamily": "unix", "description": "flash-player received a security update to version to 11.2.202.425\n (bsc#909219), which fixes: APSB14-27, CVE-2014-0580, CVE-2014-0587,\n CVE-2014-8443, CVE-2014-9162, CVE-2014-9163, CVE-2014-9164\n\n", "modified": "2014-12-12T14:04:42", "published": "2014-12-12T14:04:42", "id": "OPENSUSE-SU-2014:1629-1", "href": "http://lists.opensuse.org/opensuse-security-announce/2014-12/msg00016.html", "type": "suse", "title": "Security update for flash-player (important)", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "nessus": [{"lastseen": "2019-02-21T01:23:03", "bulletinFamily": "scanner", "description": "An updated Adobe Flash Player package that fixes multiple security issues is now available for Red Hat Enterprise Linux 5 and 6 Supplementary.\n\nRed Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.\n\nThe flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in.\n\nThis update fixes multiple vulnerabilities in Adobe Flash Player.\nThese vulnerabilities are detailed in the Adobe Security Bulletin APSB14-27, listed in the References section.\n\nMultiple flaws were found in the way flash-plugin displayed certain SWF content. An attacker could use these flaws to create a specially crafted SWF file that would cause flash-plugin to crash or, potentially, execute arbitrary code when the victim loaded a page containing the malicious SWF content. (CVE-2014-0587, CVE-2014-8443, CVE-2014-9163, CVE-2014-9164)\n\nA flaw in flash-plugin could allow an attacker to bypass the same-origin policy. (CVE-2014-0580)\n\nThis update fixes an information disclosure flaw in flash-plugin.\n(CVE-2014-9162)\n\nAll users of Adobe Flash Player should install this updated package, which upgrades Flash Player to version 11.2.202.425.", "modified": "2018-12-27T00:00:00", "id": "REDHAT-RHSA-2014-1981.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=80009", "published": "2014-12-15T00:00:00", "title": "RHEL 5 / 6 : flash-plugin (RHSA-2014:1981)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2014:1981. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(80009);\n script_version(\"1.12\");\n script_cvs_date(\"Date: 2018/12/27 10:05:36\");\n\n script_cve_id(\"CVE-2014-0580\", \"CVE-2014-0587\", \"CVE-2014-8443\", \"CVE-2014-9162\", \"CVE-2014-9163\", \"CVE-2014-9164\");\n script_bugtraq_id(71581, 71582, 71583, 71584, 71585, 71586);\n script_xref(name:\"RHSA\", value:\"2014:1981\");\n\n script_name(english:\"RHEL 5 / 6 : flash-plugin (RHSA-2014:1981)\");\n script_summary(english:\"Checks the rpm output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"An updated Adobe Flash Player package that fixes multiple security\nissues is now available for Red Hat Enterprise Linux 5 and 6\nSupplementary.\n\nRed Hat Product Security has rated this update as having Critical\nsecurity impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.\n\nThe flash-plugin package contains a Mozilla Firefox compatible Adobe\nFlash Player web browser plug-in.\n\nThis update fixes multiple vulnerabilities in Adobe Flash Player.\nThese vulnerabilities are detailed in the Adobe Security Bulletin\nAPSB14-27, listed in the References section.\n\nMultiple flaws were found in the way flash-plugin displayed certain\nSWF content. An attacker could use these flaws to create a specially\ncrafted SWF file that would cause flash-plugin to crash or,\npotentially, execute arbitrary code when the victim loaded a page\ncontaining the malicious SWF content. (CVE-2014-0587, CVE-2014-8443,\nCVE-2014-9163, CVE-2014-9164)\n\nA flaw in flash-plugin could allow an attacker to bypass the\nsame-origin policy. (CVE-2014-0580)\n\nThis update fixes an information disclosure flaw in flash-plugin.\n(CVE-2014-9162)\n\nAll users of Adobe Flash Player should install this updated package,\nwhich upgrades Flash Player to version 11.2.202.425.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://helpx.adobe.com/security/products/flash-player/apsb14-27.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2014:1981\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2014-8443\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2014-9162\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2014-9163\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2014-9164\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2014-0587\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2014-0580\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected flash-plugin package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:flash-plugin\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:5\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:6.6\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/12/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/12/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^(5|6)([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 5.x / 6.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2014:1981\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL5\", reference:\"flash-plugin-11.2.202.425-1.el5\")) flag++;\n\n\n if (rpm_check(release:\"RHEL6\", reference:\"flash-plugin-11.2.202.425-1.el6\")) flag++;\n\n\n if (flag)\n {\n flash_plugin_caveat = '\\n' +\n 'NOTE: This vulnerability check only applies to RedHat released\\n' +\n 'versions of the flash-plugin package. This check does not apply to\\n' +\n 'Adobe released versions of the flash-plugin package, which are\\n' +\n 'versioned similarly and cause collisions in detection.\\n\\n' +\n\n 'If you are certain you are running the Adobe released package of\\n' +\n 'flash-plugin and are running a version of it equal or higher to the\\n' +\n 'RedHat version listed above then you can consider this a false\\n' +\n 'positive.\\n';\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get() + redhat_report_package_caveat() + flash_plugin_caveat\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"flash-plugin\");\n }\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2019-02-21T01:23:04", "bulletinFamily": "scanner", "description": "This flash-player security update fixes the following issues :\n\n - Security update to 11.2.202.425 (bnc#909219) :\n\n - APSB14-27, (CVE-2014-0580 / CVE-2014-0587 / CVE-2014-8443 / CVE-2014-9162 / CVE-2014-9163 / CVE-2014-9164)", "modified": "2015-01-26T00:00:00", "id": "SUSE_11_FLASH-PLAYER-141214.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=80054", "published": "2014-12-16T00:00:00", "title": "SuSE 11.3 Security Update : flash-player (SAT Patch Number 10090)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from SuSE 11 update information. The text itself is\n# copyright (C) Novell, Inc.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(80054);\n script_version(\"$Revision: 1.2 $\");\n script_cvs_date(\"$Date: 2015/01/26 14:44:46 $\");\n\n script_cve_id(\"CVE-2014-0580\", \"CVE-2014-0587\", \"CVE-2014-8443\", \"CVE-2014-9162\", \"CVE-2014-9163\", \"CVE-2014-9164\");\n\n script_name(english:\"SuSE 11.3 Security Update : flash-player (SAT Patch Number 10090)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SuSE 11 host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This flash-player security update fixes the following issues :\n\n - Security update to 11.2.202.425 (bnc#909219) :\n\n - APSB14-27, (CVE-2014-0580 / CVE-2014-0587 /\n CVE-2014-8443 / CVE-2014-9162 / CVE-2014-9163 /\n CVE-2014-9164)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=909219\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2014-0580.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2014-0587.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2014-8443.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2014-9162.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2014-9163.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2014-9164.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Apply SAT patch number 10090.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:flash-player\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:flash-player-gnome\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:flash-player-kde4\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:11\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/12/14\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/12/16\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2015 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)11\") audit(AUDIT_OS_NOT, \"SuSE 11\");\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^i[3-6]86$\" && \"x86_64\" >!< cpu && \"s390x\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"SuSE 11\", cpu);\n\npl = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(pl) || int(pl) != 3) audit(AUDIT_OS_NOT, \"SuSE 11.3\");\n\n\nflag = 0;\nif (rpm_check(release:\"SLED11\", sp:3, cpu:\"i586\", reference:\"flash-player-11.2.202.425-0.3.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:3, cpu:\"i586\", reference:\"flash-player-gnome-11.2.202.425-0.3.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:3, cpu:\"i586\", reference:\"flash-player-kde4-11.2.202.425-0.3.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:3, cpu:\"x86_64\", reference:\"flash-player-11.2.202.425-0.3.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:3, cpu:\"x86_64\", reference:\"flash-player-gnome-11.2.202.425-0.3.1\")) flag++;\nif (rpm_check(release:\"SLED11\", sp:3, cpu:\"x86_64\", reference:\"flash-player-kde4-11.2.202.425-0.3.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2019-02-21T01:22:59", "bulletinFamily": "scanner", "description": "The remote host is missing KB3008925. It is, therefore, affected by the following vulnerabilities :\n\n - A security bypass vulnerability that allows an attacker to bypass the same-origin policy. (CVE-2014-0580)\n\n - Multiple memory corruption vulnerabilities that allow an attacker to execute arbitrary code. (CVE-2014-0587, CVE-2014-9164)\n\n - A use-after-free vulnerability that can result in arbitrary code execution. (CVE-2014-8443)\n\n - An unspecified information disclosure vulnerability.\n (CVE-2014-9162)\n\n - A stack-based buffer overflow vulnerability that can be exploited to execute arbitrary code or elevate privileges. (CVE-2014-9163)", "modified": "2018-11-15T00:00:00", "id": "SMB_KB3008925.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=79839", "published": "2014-12-09T00:00:00", "title": "MS KB3008925: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(79839);\n script_version(\"1.11\");\n script_cvs_date(\"Date: 2018/11/15 20:50:28\");\n\n script_cve_id(\n \"CVE-2014-0580\",\n \"CVE-2014-0587\",\n \"CVE-2014-8443\",\n \"CVE-2014-9162\",\n \"CVE-2014-9163\",\n \"CVE-2014-9164\"\n );\n script_bugtraq_id(\n 71581,\n 71582,\n 71583,\n 71584,\n 71585,\n 71586\n );\n script_xref(name:\"MSKB\", value:\"3008925\");\n\n script_name(english:\"MS KB3008925: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer\");\n script_summary(english:\"Checks the version of the ActiveX control.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Windows host has a browser plugin that is affected by\nmultiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote host is missing KB3008925. It is, therefore, affected by\nthe following vulnerabilities :\n\n - A security bypass vulnerability that allows an attacker\n to bypass the same-origin policy. (CVE-2014-0580)\n\n - Multiple memory corruption vulnerabilities that allow an\n attacker to execute arbitrary code. (CVE-2014-0587,\n CVE-2014-9164)\n\n - A use-after-free vulnerability that can result in\n arbitrary code execution. (CVE-2014-8443)\n\n - An unspecified information disclosure vulnerability.\n (CVE-2014-9162)\n\n - A stack-based buffer overflow vulnerability that can be\n exploited to execute arbitrary code or elevate\n privileges. (CVE-2014-9163)\");\n script_set_attribute(attribute:\"see_also\", value:\"https://helpx.adobe.com/security/products/flash-player/apsb14-27.html\");\n script_set_attribute(attribute:\"see_also\", value:\"https://docs.microsoft.com/en-us/security-updates/SecurityAdvisories/2016/2755801\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/3008925/microsoft-security-advisory-update-for-vulnerabilities-in-adobe-flash\");\n script_set_attribute(attribute:\"solution\", value:\"Install Microsoft KB3008925.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2014/12/09\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/12/09\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/12/09\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:adobe:flash_player\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows\");\n\n script_copyright(english:\"This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.\");\n\n script_dependencies(\"smb_hotfixes.nasl\");\n script_require_keys(\"SMB/Registry/Enumerated\", \"SMB/WindowsVersion\");\n script_require_ports(139, 445);\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"smb_func.inc\");\ninclude(\"smb_hotfixes.inc\");\ninclude(\"smb_hotfixes_fcheck.inc\");\ninclude(\"smb_activex_func.inc\");\ninclude(\"misc_func.inc\");\n\nget_kb_item_or_exit(\"SMB/Registry/Enumerated\");\nget_kb_item_or_exit(\"SMB/WindowsVersion\", exit_code:1);\n\nif (hotfix_check_sp_range(win8:'0', win81:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\nif (hotfix_check_server_core() == 1) audit(AUDIT_WIN_SERVER_CORE);\n\nif (activex_init() != ACX_OK) audit(AUDIT_FN_FAIL, \"activex_init()\");\n\n# Adobe Flash Player CLSID\nclsid = '{D27CDB6E-AE6D-11cf-96B8-444553540000}';\n\nfile = activex_get_filename(clsid:clsid);\nif (isnull(file))\n{\n activex_end();\n audit(AUDIT_FN_FAIL, \"activex_get_filename\", \"NULL\");\n}\nif (!file)\n{\n activex_end();\n audit(AUDIT_ACTIVEX_NOT_FOUND, clsid);\n}\n\n# Get its version.\nversion = activex_get_fileversion(clsid:clsid);\nif (!version)\n{\n activex_end();\n audit(AUDIT_VER_FAIL, file);\n}\n\ninfo = '';\n\niver = split(version, sep:'.', keep:FALSE);\nfor (i=0; i<max_index(iver); i++)\n iver[i] = int(iver[i]);\n\n# < 16.0.0.235\nif (\n (report_paranoia > 1 || activex_get_killbit(clsid:clsid) == 0) &&\n (\n iver[0] < 16 ||\n (\n iver[0] == 16 &&\n (\n (iver[1] == 0 && iver[2] == 0 && iver[3] < 235)\n )\n )\n )\n)\n{\n info = '\\n Path : ' + file +\n '\\n Installed version : ' + version +\n '\\n Fixed version : 16.0.0.235' +\n '\\n';\n}\n\nport = kb_smb_transport();\n\nif (info != '')\n{\n if (report_verbosity > 0)\n {\n if (report_paranoia > 1)\n {\n report = info +\n '\\n' +\n 'Note, though, that Nessus did not check whether the kill bit was\\n' +\n \"set for the control's CLSID because of the Report Paranoia setting\" + '\\n' +\n 'in effect when this scan was run.\\n';\n }\n else\n {\n report = info +\n '\\n' +\n 'Moreover, its kill bit is not set so it is accessible via Internet\\n' +\n 'Explorer.\\n';\n }\n security_hole(port:port, extra:report);\n }\n else security_hole(port);\n}\nelse audit(AUDIT_HOST_NOT, 'affected');\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2019-02-21T01:22:59", "bulletinFamily": "scanner", "description": "According to its version, the installation of Adobe Flash Player installed on the remote Mac OS X host is equal or prior to 15.0.0.239.\nIt is, therefore, affected by the following vulnerabilities :\n\n - A security bypass vulnerability that allows an attacker to bypass the same-origin policy. (CVE-2014-0580)\n\n - Multiple memory corruption vulnerabilities that allow an attacker to execute arbitrary code. (CVE-2014-0587, CVE-2014-9164)\n\n - A use-after-free vulnerability that can result in arbitrary code execution. (CVE-2014-8443)\n\n - An unspecified information disclosure vulnerability.\n (CVE-2014-9162)\n\n - A stack-based buffer overflow vulnerability that can be exploited to execute arbitrary code or elevate privileges. (CVE-2014-9163)", "modified": "2018-07-14T00:00:00", "id": "MACOSX_FLASH_PLAYER_16_0_0_235.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=79837", "published": "2014-12-09T00:00:00", "title": "Flash Player For Mac <= 15.0.0.239 Multiple Vulnerabilities (APSB14-27)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(79837);\n script_version(\"1.9\");\n script_cvs_date(\"Date: 2018/07/14 1:59:36\");\n\n script_cve_id(\n \"CVE-2014-0580\",\n \"CVE-2014-0587\",\n \"CVE-2014-8443\",\n \"CVE-2014-9162\",\n \"CVE-2014-9163\",\n \"CVE-2014-9164\"\n );\n script_bugtraq_id(\n 71581,\n 71582,\n 71583,\n 71584,\n 71585,\n 71586\n );\n\n script_name(english:\"Flash Player For Mac <= 15.0.0.239 Multiple Vulnerabilities (APSB14-27)\");\n script_summary(english:\"Checks the version of Flash Player.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Mac OS X host has a browser plugin that is affected by\nmultiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its version, the installation of Adobe Flash Player\ninstalled on the remote Mac OS X host is equal or prior to 15.0.0.239.\nIt is, therefore, affected by the following vulnerabilities :\n\n - A security bypass vulnerability that allows an attacker\n to bypass the same-origin policy. (CVE-2014-0580)\n\n - Multiple memory corruption vulnerabilities that allow an\n attacker to execute arbitrary code. (CVE-2014-0587,\n CVE-2014-9164)\n\n - A use-after-free vulnerability that can result in\n arbitrary code execution. (CVE-2014-8443)\n\n - An unspecified information disclosure vulnerability.\n (CVE-2014-9162)\n\n - A stack-based buffer overflow vulnerability that can be\n exploited to execute arbitrary code or elevate\n privileges. (CVE-2014-9163)\");\n script_set_attribute(attribute:\"see_also\", value:\"https://helpx.adobe.com/security/products/flash-player/apsb14-27.html\");\n # http://helpx.adobe.com/flash-player/kb/archived-flash-player-versions.html\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?0cb17c10\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to Adobe Flash Player version 16.0.0.235 or later.\n\nAlternatively, Adobe has made version 13.0.0.259 available for those\ninstallations that cannot be upgraded to 16.x.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2014/12/09\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/12/09\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/12/09\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:adobe:flash_player\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"MacOS X Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.\");\n\n script_dependencies(\"macosx_flash_player_installed.nasl\");\n script_require_keys(\"MacOSX/Flash_Player/Version\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\n\nversion = get_kb_item_or_exit(\"MacOSX/Flash_Player/Version\");\npath = get_kb_item_or_exit(\"MacOSX/Flash_Player/Path\");\n\nif (ver_compare(ver:version, fix:\"14.0.0.0\", strict:FALSE) >= 0)\n{\n cutoff_version = \"15.0.0.239\";\n fix = \"16.0.0.235\";\n}\nelse\n{\n cutoff_version = \"13.0.0.258\";\n fix = \"13.0.0.259\";\n}\n\n# nb: we're checking for versions less than *or equal to* the cutoff!\nif (ver_compare(ver:version, fix:cutoff_version, strict:FALSE) <= 0)\n{\n if (report_verbosity > 0)\n {\n report =\n '\\n Path : ' + path +\n '\\n Installed version : ' + version +\n '\\n Fixed version : ' + fix +\n '\\n';\n security_hole(port:0, extra:report);\n }\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_INST_PATH_NOT_VULN, \"Flash Player for Mac\", version, path);\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2019-02-21T01:22:59", "bulletinFamily": "scanner", "description": "The version of Google Chrome installed on the remote Mac OS X host is a version prior to 39.0.2171.95. It is, therefore, affected by the following vulnerabilities :\n\n - A security bypass vulnerability that allows an attacker to bypass the same-origin policy. (CVE-2014-0580)\n\n - Multiple memory corruption vulnerabilities that allow an attacker to execute arbitrary code. (CVE-2014-0587, CVE-2014-9164)\n\n - A use-after-free vulnerability that can result in arbitrary code execution. (CVE-2014-8443)\n\n - An unspecified information disclosure vulnerability.\n (CVE-2014-9162)\n\n - A stack-based buffer overflow vulnerability that can be exploited to execute arbitrary code or elevate privileges. (CVE-2014-9163)", "modified": "2018-07-14T00:00:00", "id": "MACOSX_GOOGLE_CHROME_39_0_2171_95.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=79838", "published": "2014-12-09T00:00:00", "title": "Google Chrome < 39.0.2171.95 Multiple Vulnerabilities (Mac OS X)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(79838);\n script_version(\"1.11\");\n script_cvs_date(\"Date: 2018/07/14 1:59:36\");\n\n script_cve_id(\n \"CVE-2014-0580\",\n \"CVE-2014-0587\",\n \"CVE-2014-8443\",\n \"CVE-2014-9162\",\n \"CVE-2014-9163\",\n \"CVE-2014-9164\"\n );\n script_bugtraq_id(\n 71581,\n 71582,\n 71583,\n 71584,\n 71585,\n 71586\n );\n\n script_name(english:\"Google Chrome < 39.0.2171.95 Multiple Vulnerabilities (Mac OS X)\");\n script_summary(english:\"Checks the version number of Google Chrome.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Mac OS X host contains a web browser that is affected by\nmultiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The version of Google Chrome installed on the remote Mac OS X host is\na version prior to 39.0.2171.95. It is, therefore, affected by the\nfollowing vulnerabilities :\n\n - A security bypass vulnerability that allows an attacker\n to bypass the same-origin policy. (CVE-2014-0580)\n\n - Multiple memory corruption vulnerabilities that allow an\n attacker to execute arbitrary code. (CVE-2014-0587,\n CVE-2014-9164)\n\n - A use-after-free vulnerability that can result in\n arbitrary code execution. (CVE-2014-8443)\n\n - An unspecified information disclosure vulnerability.\n (CVE-2014-9162)\n\n - A stack-based buffer overflow vulnerability that can be\n exploited to execute arbitrary code or elevate\n privileges. (CVE-2014-9163)\");\n # http://googlechromereleases.blogspot.com/2014/12/stable-channel-update.html\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?5b2222d2\");\n script_set_attribute(attribute:\"see_also\", value:\"https://helpx.adobe.com/security/products/flash-player/apsb14-27.html\");\n script_set_attribute(attribute:\"solution\", value:\"Upgrade to Google Chrome 39.0.2171.95 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2014/12/09\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/12/09\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/12/09\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:google:chrome\");\n\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"MacOS X Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.\");\n\n script_dependencies(\"macosx_google_chrome_installed.nbin\");\n script_require_keys(\"MacOSX/Google Chrome/Installed\");\n\n exit(0);\n}\n\ninclude(\"google_chrome_version.inc\");\n\nget_kb_item_or_exit(\"MacOSX/Google Chrome/Installed\");\n\ngoogle_chrome_check_version(fix:'39.0.2171.95', severity:SECURITY_HOLE, xss:FALSE);\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2019-02-21T01:23:02", "bulletinFamily": "scanner", "description": "flash-player received a security update to version to 11.2.202.425 (bsc#909219), which fixes: APSB14-27, CVE-2014-0580, CVE-2014-0587, CVE-2014-8443, CVE-2014-9162, CVE-2014-9163, CVE-2014-9164", "modified": "2018-11-10T00:00:00", "id": "OPENSUSE-2014-766.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=79999", "published": "2014-12-15T00:00:00", "title": "openSUSE Security Update : flash-player (openSUSE-SU-2014:1629-1)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update openSUSE-2014-766.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(79999);\n script_version(\"1.3\");\n script_cvs_date(\"Date: 2018/11/10 11:50:02\");\n\n script_cve_id(\"CVE-2014-0580\", \"CVE-2014-0587\", \"CVE-2014-8443\", \"CVE-2014-9162\", \"CVE-2014-9163\", \"CVE-2014-9164\");\n\n script_name(english:\"openSUSE Security Update : flash-player (openSUSE-SU-2014:1629-1)\");\n script_summary(english:\"Check for the openSUSE-2014-766 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"flash-player received a security update to version to 11.2.202.425\n(bsc#909219), which fixes: APSB14-27, CVE-2014-0580, CVE-2014-0587,\nCVE-2014-8443, CVE-2014-9162, CVE-2014-9163, CVE-2014-9164\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=909219\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://lists.opensuse.org/opensuse-updates/2014-12/msg00049.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected flash-player packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:flash-player\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:flash-player-gnome\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:flash-player-kde4\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:12.3\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:13.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:13.2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/12/12\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/12/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE12\\.3|SUSE13\\.1|SUSE13\\.2)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"12.3 / 13.1 / 13.2\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(i586|i686|x86_64)$\") audit(AUDIT_ARCH_NOT, \"i586 / i686 / x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE12.3\", reference:\"flash-player-11.2.202.425-2.108.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.3\", reference:\"flash-player-gnome-11.2.202.425-2.108.1\") ) flag++;\nif ( rpm_check(release:\"SUSE12.3\", reference:\"flash-player-kde4-11.2.202.425-2.108.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", reference:\"flash-player-11.2.202.425-82.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", reference:\"flash-player-gnome-11.2.202.425-82.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", reference:\"flash-player-kde4-11.2.202.425-82.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"flash-player-11.2.202.425-2.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"flash-player-gnome-11.2.202.425-2.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"flash-player-kde4-11.2.202.425-2.17.1\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"flash-player / flash-player-gnome / flash-player-kde4\");\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2019-02-21T01:22:59", "bulletinFamily": "scanner", "description": "According to its version, the installation of Adobe Flash Player installed on the remote Windows host is equal or prior to 15.0.0.239.\nIt is, therefore, affected by the following vulnerabilities :\n\n - A security bypass vulnerability that allows an attacker to bypass the same-origin policy. (CVE-2014-0580)\n\n - Multiple memory corruption vulnerabilities that allow an attacker to execute arbitrary code. (CVE-2014-0587, CVE-2014-9164)\n\n - A use-after-free vulnerability that can result in arbitrary code execution. (CVE-2014-8443)\n\n - An unspecified information disclosure vulnerability.\n (CVE-2014-9162)\n\n - A stack-based buffer overflow vulnerability that can be exploited to execute arbitrary code or elevate privileges. (CVE-2014-9163)", "modified": "2018-07-11T00:00:00", "id": "FLASH_PLAYER_APSB14-27.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=79835", "published": "2014-12-09T00:00:00", "title": "Flash Player <= 15.0.0.239 Multiple Vulnerabilities (APSB14-27)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(79835);\n script_version(\"1.12\");\n script_cvs_date(\"Date: 2018/07/11 17:09:26\");\n\n script_cve_id(\n \"CVE-2014-0580\",\n \"CVE-2014-0587\",\n \"CVE-2014-8443\",\n \"CVE-2014-9162\",\n \"CVE-2014-9163\",\n \"CVE-2014-9164\"\n );\n script_bugtraq_id(\n 71581,\n 71582,\n 71583,\n 71584,\n 71585,\n 71586\n );\n\n script_name(english:\"Flash Player <= 15.0.0.239 Multiple Vulnerabilities (APSB14-27)\");\n script_summary(english:\"Checks the version of Flash Player.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Windows host has a browser plugin that is affected by\nmultiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to its version, the installation of Adobe Flash Player\ninstalled on the remote Windows host is equal or prior to 15.0.0.239.\nIt is, therefore, affected by the following vulnerabilities :\n\n - A security bypass vulnerability that allows an attacker\n to bypass the same-origin policy. (CVE-2014-0580)\n\n - Multiple memory corruption vulnerabilities that allow an\n attacker to execute arbitrary code. (CVE-2014-0587,\n CVE-2014-9164)\n\n - A use-after-free vulnerability that can result in\n arbitrary code execution. (CVE-2014-8443)\n\n - An unspecified information disclosure vulnerability.\n (CVE-2014-9162)\n\n - A stack-based buffer overflow vulnerability that can be\n exploited to execute arbitrary code or elevate\n privileges. (CVE-2014-9163)\");\n script_set_attribute(attribute:\"see_also\", value:\"https://helpx.adobe.com/security/products/flash-player/apsb14-27.html\");\n # http://helpx.adobe.com/flash-player/kb/archived-flash-player-versions.html\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?0cb17c10\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to Adobe Flash Player version 16.0.0.235 or later.\n\nAlternatively, Adobe has made version 13.0.0.259 available for those\ninstallations that cannot be upgraded to 16.x.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2014/12/09\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/12/09\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/12/09\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:adobe:flash_player\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows\");\n\n script_copyright(english:\"This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.\");\n\n script_dependencies(\"flash_player_installed.nasl\");\n script_require_keys(\"SMB/Flash_Player/installed\");\n\n exit(0);\n}\n\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\n\nget_kb_item_or_exit(\"SMB/Flash_Player/installed\");\n\n# Identify vulnerable versions.\ninfo = \"\";\n\n# we're checking for versions less than *or equal to* the cutoff!\nforeach variant (make_list(\"Plugin\", \"ActiveX\", \"Chrome\", \"Chrome_Pepper\"))\n{\n vers = get_kb_list(\"SMB/Flash_Player/\"+variant+\"/Version/*\");\n files = get_kb_list(\"SMB/Flash_Player/\"+variant+\"/File/*\");\n if (!isnull(vers) && !isnull(files))\n {\n foreach key (keys(vers))\n {\n ver = vers[key];\n\n if (ver)\n {\n iver = split(ver, sep:'.', keep:FALSE);\n for (i=0; i<max_index(iver); i++)\n iver[i] = int(iver[i]);\n\n if (\n (\n # Chrome Flash <= 15.0.0.239\n variant == \"Chrome_Pepper\" &&\n (\n (iver[0] < 15) ||\n (iver[0] == 15 && iver[1] == 0 && iver[2] == 0 && iver[3] <= 239)\n )\n ) ||\n (variant != \"Chrome_Pepper\" &&\n (\n (\n # < 13\n (\n iver[0] < 13 ||\n # 13.0.0.x <= 13.0.0.258\n (\n iver[0] == 13 &&\n (\n iver[1] == 0 &&\n (\n iver[2] == 0 &&\n (\n iver[3] <= 258\n )\n )\n )\n )\n ) ||\n # 14.0.0.x <= 15.0.0.239\n (\n iver[0] == 14 ||\n (\n iver[0] == 15 &&\n (\n iver[1] == 0 &&\n (\n iver[2] == 0 &&\n (\n iver[3] <= 239\n )\n )\n )\n )\n )\n )\n )\n )\n )\n {\n num = key - (\"SMB/Flash_Player/\"+variant+\"/Version/\");\n file = files[\"SMB/Flash_Player/\"+variant+\"/File/\"+num];\n if (variant == \"Plugin\")\n {\n info += '\\n Product : Browser Plugin (for Firefox / Netscape / Opera)';\n fix = \"16.0.0.235 / 13.0.0.259\";\n }\n else if (variant == \"ActiveX\")\n {\n info += '\\n Product : ActiveX control (for Internet Explorer)';\n fix = \"16.0.0.235 / 13.0.0.259\";\n }\n else if (\"Chrome\" >< variant)\n {\n info += '\\n Product : Browser Plugin (for Google Chrome)';\n }\n info += '\\n Path : ' + file +\n '\\n Installed version : ' + ver;\n if (variant == \"Chrome_Pepper\")\n info += '\\n Fixed version : 16.0.0.235 (Chrome PepperFlash)';\n else\n info += '\\n Fixed version : '+fix;\n info += '\\n';\n }\n }\n }\n }\n}\n\nif (info)\n{\n port = get_kb_item(\"SMB/transport\");\n if (!port) port = 445;\n\n if (report_verbosity > 0) security_hole(port:port, extra:info);\n else security_hole(port);\n}\nelse\n{\n if (thorough_tests)\n exit(0, 'No vulnerable versions of Adobe Flash Player were found.');\n else\n exit(1, 'Google Chrome\\'s built-in Flash Player may not have been detected because the \\'Perform thorough tests\\' setting was not enabled.');\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2019-02-21T01:22:59", "bulletinFamily": "scanner", "description": "The version of Google Chrome installed on the remote Windows host is a version prior to 39.0.2171.95. It is, therefore, affected by the following vulnerabilities :\n\n - A security bypass vulnerability that allows an attacker to bypass the same-origin policy. (CVE-2014-0580)\n\n - Multiple memory corruption vulnerabilities that allow an attacker to execute arbitrary code. (CVE-2014-0587, CVE-2014-9164)\n\n - A use-after-free vulnerability that can result in arbitrary code execution. (CVE-2014-8443)\n\n - An unspecified information disclosure vulnerability.\n (CVE-2014-9162)\n\n - A stack-based buffer overflow vulnerability that can be exploited to execute arbitrary code or elevate privileges. (CVE-2014-9163)", "modified": "2018-07-12T00:00:00", "id": "GOOGLE_CHROME_39_0_2171_95.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=79836", "published": "2014-12-09T00:00:00", "title": "Google Chrome < 39.0.2171.95 Multiple Vulnerabilities", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(79836);\n script_version(\"1.10\");\n script_cvs_date(\"Date: 2018/07/12 19:01:16\");\n\n script_cve_id(\n \"CVE-2014-0580\",\n \"CVE-2014-0587\",\n \"CVE-2014-8443\",\n \"CVE-2014-9162\",\n \"CVE-2014-9163\",\n \"CVE-2014-9164\"\n );\n script_bugtraq_id(\n 71581,\n 71582,\n 71583,\n 71584,\n 71585,\n 71586\n );\n\n script_name(english:\"Google Chrome < 39.0.2171.95 Multiple Vulnerabilities\");\n script_summary(english:\"Checks the version number of Google Chrome.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Windows host contains a web browser that is affected by\nmultiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The version of Google Chrome installed on the remote Windows host is a\nversion prior to 39.0.2171.95. It is, therefore, affected by the\nfollowing vulnerabilities :\n\n - A security bypass vulnerability that allows an attacker\n to bypass the same-origin policy. (CVE-2014-0580)\n\n - Multiple memory corruption vulnerabilities that allow an\n attacker to execute arbitrary code. (CVE-2014-0587,\n CVE-2014-9164)\n\n - A use-after-free vulnerability that can result in\n arbitrary code execution. (CVE-2014-8443)\n\n - An unspecified information disclosure vulnerability.\n (CVE-2014-9162)\n\n - A stack-based buffer overflow vulnerability that can be\n exploited to execute arbitrary code or elevate\n privileges. (CVE-2014-9163)\");\n # http://googlechromereleases.blogspot.com/2014/12/stable-channel-update.html\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?5b2222d2\");\n script_set_attribute(attribute:\"solution\", value:\"Upgrade to Google Chrome 39.0.2171.95 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2014/12/09\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/12/09\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/12/09\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:google:chrome\");\n\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows\");\n\n script_copyright(english:\"This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.\");\n\n script_dependencies(\"google_chrome_installed.nasl\");\n script_require_keys(\"SMB/Google_Chrome/Installed\");\n\n exit(0);\n}\n\ninclude(\"google_chrome_version.inc\");\n\nget_kb_item_or_exit(\"SMB/Google_Chrome/Installed\");\ninstalls = get_kb_list(\"SMB/Google_Chrome/*\");\n\ngoogle_chrome_check_version(installs:installs, fix:'39.0.2171.95', severity:SECURITY_HOLE, xss:FALSE);\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2019-02-21T01:23:01", "bulletinFamily": "scanner", "description": "The remote host is affected by the vulnerability described in GLSA-201412-07 (Adobe Flash Player: Multiple vulnerabilities)\n\n Multiple vulnerabilities have been discovered in Adobe Flash Player.\n Please review the CVE identifiers referenced below for details.\n Impact :\n\n A remote attacker could possibly execute arbitrary code with the privileges of the process or bypass security restrictions.\n Workaround :\n\n There is no known workaround at this time.", "modified": "2016-05-20T00:00:00", "id": "GENTOO_GLSA-201412-07.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=79960", "published": "2014-12-15T00:00:00", "title": "GLSA-201412-07 : Adobe Flash Player: Multiple vulnerabilities", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Gentoo Linux Security Advisory GLSA 201412-07.\n#\n# The advisory text is Copyright (C) 2001-2016 Gentoo Foundation, Inc.\n# and licensed under the Creative Commons - Attribution / Share Alike \n# license. See http://creativecommons.org/licenses/by-sa/3.0/\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(79960);\n script_version(\"$Revision: 1.3 $\");\n script_cvs_date(\"$Date: 2016/05/20 14:03:00 $\");\n\n script_cve_id(\"CVE-2014-0580\", \"CVE-2014-0587\", \"CVE-2014-8439\", \"CVE-2014-8443\", \"CVE-2014-9162\", \"CVE-2014-9163\", \"CVE-2014-9164\");\n script_bugtraq_id(71289, 71581, 71582, 71583, 71584, 71585, 71586);\n script_xref(name:\"GLSA\", value:\"201412-07\");\n\n script_name(english:\"GLSA-201412-07 : Adobe Flash Player: Multiple vulnerabilities\");\n script_summary(english:\"Checks for updated package(s) in /var/db/pkg\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Gentoo host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The remote host is affected by the vulnerability described in GLSA-201412-07\n(Adobe Flash Player: Multiple vulnerabilities)\n\n Multiple vulnerabilities have been discovered in Adobe Flash Player.\n Please review the CVE identifiers referenced below for details.\n \nImpact :\n\n A remote attacker could possibly execute arbitrary code with the\n privileges of the process or bypass security restrictions.\n \nWorkaround :\n\n There is no known workaround at this time.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security.gentoo.org/glsa/201412-07\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"All Adobe Flash Player users should upgrade to the latest version:\n # emerge --sync\n # emerge --ask --oneshot --verbose\n '>=www-plugins/adobe-flash-11.2.202.425'\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No exploit is required\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:gentoo:linux:adobe-flash\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:gentoo:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/12/11\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/12/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Gentoo Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Gentoo/release\", \"Host/Gentoo/qpkg-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"qpkg.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Gentoo/release\")) audit(AUDIT_OS_NOT, \"Gentoo\");\nif (!get_kb_item(\"Host/Gentoo/qpkg-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (qpkg_check(package:\"www-plugins/adobe-flash\", unaffected:make_list(\"ge 11.2.202.425\"), vulnerable:make_list(\"lt 11.2.202.425\"))) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:qpkg_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = qpkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"Adobe Flash Player\");\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "archlinux": [{"lastseen": "2016-09-02T18:44:36", "bulletinFamily": "unix", "description": "- CVE-2014-0580 (policy bypass)\nA flaw allows remote attackers to bypass the same origin policy via\nunspecified vectors.\n\n- CVE-2014-0587 (arbitrary code execution)\nA flaw allows attackers to execute arbitrary code or cause a denial of\nservice (memory corruption) via unspecified vectors.\n\n- CVE-2014-8443 (arbitrary code execution)\nA flaw allows attackers to execute arbitrary code via a use-after-free\nvulnerability.\n\n- CVE-2014-9163 (arbitrary code execution)\nA flaw allows attackers to execute arbitrary code via a stack-based\nbuffer overflow vulnerability.\n\n- CVE-2014-9164 (arbitrary code execution)\nA flaw allows attackers to execute arbitrary code or cause a denial of\nservice (memory corruption) via unspecified vectors.\n\n- CVE-2014-9162 (information disclosure)\nA flaw allows attackers to obtain sensitive information via unspecified\nvectors.", "modified": "2014-12-12T00:00:00", "published": "2014-12-12T00:00:00", "href": "https://lists.archlinux.org/pipermail/arch-security/2014-December/000171.html", "id": "ASA-201412-13", "title": "flashplugin: multiple issues", "type": "archlinux", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "openvas": [{"lastseen": "2018-10-22T16:40:55", "bulletinFamily": "scanner", "description": "This host is installed with Adobe Flash\n Player and is prone to multiple vulnerabilities.", "modified": "2018-10-12T00:00:00", "published": "2014-12-15T00:00:00", "id": "OPENVAS:1361412562310805210", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310805210", "title": "Adobe Flash Player Multiple Vulnerabilities(APSB14-27)- 01 Dec14 (Windows)", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_adobe_flash_mult_vuln01_dec14_win.nasl 11867 2018-10-12 10:48:11Z cfischer $\n#\n# Adobe Flash Player Multiple Vulnerabilities(APSB14-27)- 01 Dec14 (Windows)\n#\n# Authors:\n# Shakeel <bshakeel@secpod.com>\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nCPE = \"cpe:/a:adobe:flash_player\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.805210\");\n script_version(\"$Revision: 11867 $\");\n script_cve_id(\"CVE-2014-0580\", \"CVE-2014-0587\", \"CVE-2014-8443\", \"CVE-2014-9162\",\n \"CVE-2014-9164\");\n script_bugtraq_id(71584, 71586, 71585, 71581, 71583);\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-10-12 12:48:11 +0200 (Fri, 12 Oct 2018) $\");\n script_tag(name:\"creation_date\", value:\"2014-12-15 17:08:41 +0530 (Mon, 15 Dec 2014)\");\n script_name(\"Adobe Flash Player Multiple Vulnerabilities(APSB14-27)- 01 Dec14 (Windows)\");\n\n script_tag(name:\"summary\", value:\"This host is installed with Adobe Flash\n Player and is prone to multiple vulnerabilities.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"Multiple Flaws are due to,\n\n - An out-of-bounds read error when handling Regular Expression Objects.\n\n - Some unspecified errors.\n\n - A use-after-free error.\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation will allow attackers\n to disclose potentially sensitive information, bypass certain security\n restrictions, and compromise a user's system.\");\n\n script_tag(name:\"affected\", value:\"Adobe Flash Player version before\n 13.0.0.259, 14.x through 16.x before 16.0.0.235 on Windows\");\n\n script_tag(name:\"solution\", value:\"Upgrade to Adobe Flash Player version\n 13.0.0.259 or 16.0.0.235 or later.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"registry\");\n\n script_xref(name:\"URL\", value:\"http://secunia.com/advisories/61094\");\n script_xref(name:\"URL\", value:\"http://helpx.adobe.com/security/products/flash-player/apsb14-27.html\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"General\");\n script_dependencies(\"gb_adobe_flash_player_detect_win.nasl\");\n script_mandatory_keys(\"AdobeFlashPlayer/Win/Installed\");\n script_xref(name:\"URL\", value:\"http://get.adobe.com/flashplayer\");\n exit(0);\n}\n\n\ninclude(\"host_details.inc\");\ninclude(\"version_func.inc\");\n\nif(!playerVer = get_app_version(cpe:CPE)){\n exit(0);\n}\n\nif(version_is_less(version:playerVer, test_version:\"13.0.0.259\") ||\n version_in_range(version:playerVer, test_version:\"14.0.0\", test_version2:\"16.0.0.234\"))\n{\n security_message( port: 0, data: \"The target host was found to be vulnerable\" );\n exit(0);\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-10-22T16:41:21", "bulletinFamily": "scanner", "description": "This host is installed with Adobe Flash\n Player and is prone to multiple vulnerabilities.", "modified": "2018-10-12T00:00:00", "published": "2014-12-15T00:00:00", "id": "OPENVAS:1361412562310805214", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310805214", "title": "Adobe Flash Player Multiple Vulnerabilities(APSB14-27)- 01 Dec14 (Linux)", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_adobe_flash_mult_vuln01_dec14_lin.nasl 11867 2018-10-12 10:48:11Z cfischer $\n#\n# Adobe Flash Player Multiple Vulnerabilities(APSB14-27)- 01 Dec14 (Linux)\n#\n# Authors:\n# Shakeel <bshakeel@secpod.com>\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nCPE = \"cpe:/a:adobe:flash_player\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.805214\");\n script_version(\"$Revision: 11867 $\");\n script_cve_id(\"CVE-2014-0580\", \"CVE-2014-0587\", \"CVE-2014-8443\", \"CVE-2014-9162\",\n \"CVE-2014-9164\", \"CVE-2014-9163\");\n script_bugtraq_id(71584, 71586, 71585, 71581, 71583, 71582);\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-10-12 12:48:11 +0200 (Fri, 12 Oct 2018) $\");\n script_tag(name:\"creation_date\", value:\"2014-12-15 17:56:26 +0530 (Mon, 15 Dec 2014)\");\n script_name(\"Adobe Flash Player Multiple Vulnerabilities(APSB14-27)- 01 Dec14 (Linux)\");\n\n script_tag(name:\"summary\", value:\"This host is installed with Adobe Flash\n Player and is prone to multiple vulnerabilities.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"Multiple Flaws are due to,\n\n - An out-of-bounds read error when handling Regular Expression Objects.\n\n - Some unspecified errors.\n\n - A use-after-free error.\n\n - An error when the 'parseFloat' function is called on a specific datatype.\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation will allow attackers\n to disclose potentially sensitive information, bypass certain security\n restrictions, and compromise a user's system.\");\n\n script_tag(name:\"affected\", value:\"Adobe Flash Player version before\n 11.2.202.425 on Linux\");\n\n script_tag(name:\"solution\", value:\"Upgrade to Adobe Flash Player version\n 11.2.202.425 or later.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"executable_version\");\n\n script_xref(name:\"URL\", value:\"http://secunia.com/advisories/61094\");\n script_xref(name:\"URL\", value:\"http://helpx.adobe.com/security/products/flash-player/apsb14-27.html\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"General\");\n script_dependencies(\"gb_adobe_flash_player_detect_lin.nasl\");\n script_mandatory_keys(\"AdobeFlashPlayer/Linux/Ver\");\n script_xref(name:\"URL\", value:\"http://get.adobe.com/flashplayer\");\n exit(0);\n}\n\n\ninclude(\"host_details.inc\");\ninclude(\"version_func.inc\");\n\nif(!playerVer = get_app_version(cpe:CPE)){\n exit(0);\n}\n\nif(version_is_less(version:playerVer, test_version:\"11.2.202.425\"))\n{\n security_message( port: 0, data: \"The target host was found to be vulnerable\" );\n exit(0);\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-11-19T13:01:23", "bulletinFamily": "scanner", "description": "The remote host is missing an update for the ", "modified": "2018-11-16T00:00:00", "published": "2015-10-16T00:00:00", "id": "OPENVAS:1361412562310850972", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310850972", "title": "SuSE Update for flash-player SUSE-SU-2014:1650-1 (flash-player)", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_suse_2014_1650_1.nasl 12381 2018-11-16 11:16:30Z cfischer $\n#\n# SuSE Update for flash-player SUSE-SU-2014:1650-1 (flash-player)\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.850972\");\n script_version(\"$Revision: 12381 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-11-16 12:16:30 +0100 (Fri, 16 Nov 2018) $\");\n script_tag(name:\"creation_date\", value:\"2015-10-16 15:18:24 +0200 (Fri, 16 Oct 2015)\");\n script_cve_id(\"CVE-2014-0580\", \"CVE-2014-0587\", \"CVE-2014-8443\", \"CVE-2014-9162\", \"CVE-2014-9163\", \"CVE-2014-9164\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"SuSE Update for flash-player SUSE-SU-2014:1650-1 (flash-player)\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'flash-player'\n package(s) announced via the referenced advisory.\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n script_tag(name:\"insight\", value:\"This flash-player security update fixes the following issues:\n\n * Security update to 11.2.202.425 (bnc#909219):\n o APSB14-27, CVE-2014-0580, CVE-2014-0587, CVE-2014-8443,\n CVE-2014-9162, CVE-2014-9163, CVE-2014-9164\n\n Security Issues:\n\n * CVE-2014-0580\n\n * CVE-2014-0587\n\n * CVE-2014-8443\n\n * CVE-2014-9162\n\n * CVE-2014-9163\n\n * CVE-2014-9164\");\n script_tag(name:\"affected\", value:\"flash-player on SUSE Linux Enterprise Desktop 11 SP3\");\n script_tag(name:\"solution\", value:\"Please install the updated packages.\");\n script_xref(name:\"SUSE-SU\", value:\"2014:1650_1\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"SuSE Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/suse\", \"ssh/login/rpms\", re:\"ssh/login/release=SLED11\\.0SP3\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\nres = \"\";\n\nif(release == \"SLED11.0SP3\")\n{\n\n if ((res = isrpmvuln(pkg:\"flash-player\", rpm:\"flash-player~11.2.202.425~0.3.1\", rls:\"SLED11.0SP3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"flash-player-gnome\", rpm:\"flash-player-gnome~11.2.202.425~0.3.1\", rls:\"SLED11.0SP3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"flash-player-kde4\", rpm:\"flash-player-kde4~11.2.202.425~0.3.1\", rls:\"SLED11.0SP3\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-10-22T16:40:53", "bulletinFamily": "scanner", "description": "This host is installed with Adobe Flash\n Player and is prone to multiple vulnerabilities.", "modified": "2018-10-12T00:00:00", "published": "2014-12-15T00:00:00", "id": "OPENVAS:1361412562310805212", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310805212", "title": "Adobe Flash Player Multiple Vulnerabilities(APSB14-27)- 01 Dec14 (Mac OS X)", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_adobe_flash_mult_vuln01_dec14_macosx.nasl 11867 2018-10-12 10:48:11Z cfischer $\n#\n# Adobe Flash Player Multiple Vulnerabilities(APSB14-27)- 01 Dec14 (Mac OS X)\n#\n# Authors:\n# Shakeel <bshakeel@secpod.com>\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nCPE = \"cpe:/a:adobe:flash_player\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.805212\");\n script_version(\"$Revision: 11867 $\");\n script_cve_id(\"CVE-2014-0580\", \"CVE-2014-0587\", \"CVE-2014-8443\", \"CVE-2014-9162\",\n \"CVE-2014-9164\");\n script_bugtraq_id(71584, 71586, 71585, 71581, 71583);\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-10-12 12:48:11 +0200 (Fri, 12 Oct 2018) $\");\n script_tag(name:\"creation_date\", value:\"2014-12-15 17:46:48 +0530 (Mon, 15 Dec 2014)\");\n script_name(\"Adobe Flash Player Multiple Vulnerabilities(APSB14-27)- 01 Dec14 (Mac OS X)\");\n\n script_tag(name:\"summary\", value:\"This host is installed with Adobe Flash\n Player and is prone to multiple vulnerabilities.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"Multiple Flaws are due to,\n\n - An out-of-bounds read error when handling Regular Expression Objects.\n\n - Some unspecified errors.\n\n - A use-after-free error.\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation will allow attackers\n to disclose potentially sensitive information, bypass certain security\n restrictions, and compromise a user's system.\");\n\n script_tag(name:\"affected\", value:\"Adobe Flash Player version before\n 13.0.0.259, 14.x through 16.x before 16.0.0.235 on Mac OS X\");\n\n script_tag(name:\"solution\", value:\"Upgrade to Adobe Flash Player version\n 13.0.0.259 or 16.0.0.235 or later.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"package\");\n\n script_xref(name:\"URL\", value:\"http://secunia.com/advisories/61094\");\n script_xref(name:\"URL\", value:\"http://helpx.adobe.com/security/products/flash-player/apsb14-27.html\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"General\");\n script_dependencies(\"secpod_adobe_prdts_detect_macosx.nasl\");\n script_mandatory_keys(\"Adobe/Flash/Player/MacOSX/Version\");\n script_xref(name:\"URL\", value:\"http://get.adobe.com/flashplayer\");\n exit(0);\n}\n\n\ninclude(\"host_details.inc\");\ninclude(\"version_func.inc\");\n\nif(!playerVer = get_app_version(cpe:CPE)){\n exit(0);\n}\n\nif(version_is_less(version:playerVer, test_version:\"13.0.0.259\") ||\n version_in_range(version:playerVer, test_version:\"14.0.0\", test_version2:\"16.0.0.234\"))\n{\n security_message( port: 0, data: \"The target host was found to be vulnerable\" );\n exit(0);\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-10-29T12:39:29", "bulletinFamily": "scanner", "description": "Gentoo Linux Local Security Checks GLSA 201412-07", "modified": "2018-10-26T00:00:00", "published": "2015-09-29T00:00:00", "id": "OPENVAS:1361412562310121293", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310121293", "title": "Gentoo Security Advisory GLSA 201412-07", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: glsa-201412-07.nasl 12128 2018-10-26 13:35:25Z cfischer $\n#\n# Gentoo Linux security check\n#\n# Authors:\n# Eero Volotinen <eero.volotinen@solinor.com>\n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.121293\");\n script_version(\"$Revision: 12128 $\");\n script_tag(name:\"creation_date\", value:\"2015-09-29 11:28:04 +0300 (Tue, 29 Sep 2015)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-10-26 15:35:25 +0200 (Fri, 26 Oct 2018) $\");\n script_name(\"Gentoo Security Advisory GLSA 201412-07\");\n script_tag(name:\"insight\", value:\"Multiple vulnerabilities have been discovered in Adobe Flash Player. Please review the CVE identifiers referenced below for details.\");\n script_tag(name:\"solution\", value:\"Update the affected packages to the latest available version.\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"URL\", value:\"https://security.gentoo.org/glsa/201412-07\");\n script_cve_id(\"CVE-2014-0580\", \"CVE-2014-0587\", \"CVE-2014-8439\", \"CVE-2014-8443\", \"CVE-2014-9162\", \"CVE-2014-9163\", \"CVE-2014-9164\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/gentoo\", \"ssh/login/pkg\");\n script_category(ACT_GATHER_INFO);\n script_tag(name:\"summary\", value:\"Gentoo Linux Local Security Checks GLSA 201412-07\");\n script_copyright(\"Eero Volotinen\");\n script_family(\"Gentoo Local Security Checks\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-gentoo.inc\");\n\nres = \"\";\nreport = \"\";\n\nif((res=ispkgvuln(pkg:\"www-plugins/adobe-flash\", unaffected: make_list(\"ge 11.2.202.425\"), vulnerable: make_list(\"lt 11.2.202.425\"))) != NULL) {\n report += res;\n}\n\nif(report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99);\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-10-22T16:40:39", "bulletinFamily": "scanner", "description": "This host is installed with Adobe Flash\n Player and is prone to multiple vulnerabilities.", "modified": "2018-10-12T00:00:00", "published": "2014-12-15T00:00:00", "id": "OPENVAS:1361412562310805213", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310805213", "title": "Adobe Flash Player Multiple Vulnerabilities(APSB14-27)- 02 Dec14 (Mac OS X)", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_adobe_flash_mult_vuln02_dec14_macosx.nasl 11867 2018-10-12 10:48:11Z cfischer $\n#\n# Adobe Flash Player Multiple Vulnerabilities(APSB14-27)- 02 Dec14 (Mac OS X)\n#\n# Authors:\n# Shakeel <bshakeel@secpod.com>\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nCPE = \"cpe:/a:adobe:flash_player\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.805213\");\n script_version(\"$Revision: 11867 $\");\n script_cve_id(\"CVE-2014-9163\");\n script_bugtraq_id(71582);\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-10-12 12:48:11 +0200 (Fri, 12 Oct 2018) $\");\n script_tag(name:\"creation_date\", value:\"2014-12-15 17:50:31 +0530 (Mon, 15 Dec 2014)\");\n script_name(\"Adobe Flash Player Multiple Vulnerabilities(APSB14-27)- 02 Dec14 (Mac OS X)\");\n\n script_tag(name:\"summary\", value:\"This host is installed with Adobe Flash\n Player and is prone to multiple vulnerabilities.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"The flaw exists due to an error when the\n 'parseFloat' function is called on a specific datatype.\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation will allow attackers\n to cause a stack-based buffer overflow, potentially allowing the execution of\n arbitrary code.\");\n\n script_tag(name:\"affected\", value:\"Adobe Flash Player version before\n 13.0.0.259, 14.x and 15.x before 15.0.0.246 and 16.x before 16.0.0.235 on\n Mac OS X\");\n\n script_tag(name:\"solution\", value:\"Upgrade to Adobe Flash Player version\n 13.0.0.259 or 15.0.0.246 or 16.0.0.235 or later.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"package\");\n\n script_xref(name:\"URL\", value:\"http://secunia.com/advisories/61094\");\n script_xref(name:\"URL\", value:\"http://helpx.adobe.com/security/products/flash-player/apsb14-27.html\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"General\");\n script_dependencies(\"secpod_adobe_prdts_detect_macosx.nasl\");\n script_mandatory_keys(\"Adobe/Flash/Player/MacOSX/Version\");\n script_xref(name:\"URL\", value:\"http://get.adobe.com/flashplayer\");\n exit(0);\n}\n\n\ninclude(\"host_details.inc\");\ninclude(\"version_func.inc\");\n\nif(!playerVer = get_app_version(cpe:CPE)){\n exit(0);\n}\n\nif(version_is_less(version:playerVer, test_version:\"13.0.0.259\") ||\n version_in_range(version:playerVer, test_version:\"14.0.0\", test_version2:\"15.0.0.245\") ||\n version_in_range(version:playerVer, test_version:\"16.0.0\", test_version2:\"16.0.0.234\"))\n{\n security_message( port: 0, data: \"The target host was found to be vulnerable\" );\n exit(0);\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-10-22T16:40:40", "bulletinFamily": "scanner", "description": "This host is installed with Adobe Flash\n Player and is prone to multiple vulnerabilities.", "modified": "2018-10-12T00:00:00", "published": "2014-12-15T00:00:00", "id": "OPENVAS:1361412562310805211", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310805211", "title": "Adobe Flash Player Multiple Vulnerabilities(APSB14-27)- 02 Dec14 (Windows)", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_adobe_flash_mult_vuln02_dec14_win.nasl 11867 2018-10-12 10:48:11Z cfischer $\n#\n# Adobe Flash Player Multiple Vulnerabilities(APSB14-27)- 02 Dec14 (Windows)\n#\n# Authors:\n# Shakeel <bshakeel@secpod.com>\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nCPE = \"cpe:/a:adobe:flash_player\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.805211\");\n script_version(\"$Revision: 11867 $\");\n script_cve_id(\"CVE-2014-9163\");\n script_bugtraq_id(71582);\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-10-12 12:48:11 +0200 (Fri, 12 Oct 2018) $\");\n script_tag(name:\"creation_date\", value:\"2014-12-15 17:48:41 +0530 (Mon, 15 Dec 2014)\");\n script_name(\"Adobe Flash Player Multiple Vulnerabilities(APSB14-27)- 02 Dec14 (Windows)\");\n\n script_tag(name:\"summary\", value:\"This host is installed with Adobe Flash\n Player and is prone to multiple vulnerabilities.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"The flaw exists due to an error when the\n 'parseFloat' function is called on a specific datatype.\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation will allow attackers\n to cause a stack-based buffer overflow, potentially allowing the execution of\n arbitrary code.\");\n\n script_tag(name:\"affected\", value:\"Adobe Flash Player version before\n 13.0.0.259, 14.x and 15.x before 15.0.0.246 and 16.x before 16.0.0.235 on\n Windows\");\n\n script_tag(name:\"solution\", value:\"Upgrade to Adobe Flash Player version\n 13.0.0.259 or 15.0.0.246 or 16.0.0.235 or later.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"registry\");\n\n script_xref(name:\"URL\", value:\"http://secunia.com/advisories/61094\");\n script_xref(name:\"URL\", value:\"http://helpx.adobe.com/security/products/flash-player/apsb14-27.html\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"General\");\n script_dependencies(\"gb_adobe_flash_player_detect_win.nasl\");\n script_mandatory_keys(\"AdobeFlashPlayer/Win/Installed\");\n script_xref(name:\"URL\", value:\"http://get.adobe.com/flashplayer\");\n exit(0);\n}\n\n\ninclude(\"host_details.inc\");\ninclude(\"version_func.inc\");\n\nif(!playerVer = get_app_version(cpe:CPE)){\n exit(0);\n}\n\nif(version_is_less(version:playerVer, test_version:\"13.0.0.259\") ||\n version_in_range(version:playerVer, test_version:\"14.0.0\", test_version2:\"15.0.0.245\") ||\n version_in_range(version:playerVer, test_version:\"16.0.0\", test_version2:\"16.0.0.234\"))\n{\n security_message( port: 0, data: \"The target host was found to be vulnerable\" );\n exit(0);\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "cve": [{"lastseen": "2018-12-21T12:15:56", "bulletinFamily": "NVD", "description": "Adobe Flash Player before 13.0.0.259 and 14.x through 16.x before 16.0.0.235 on Windows and OS X and before 11.2.202.425 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0587.", "modified": "2018-12-20T12:53:19", "published": "2014-12-10T16:59:36", "id": "CVE-2014-9164", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-9164", "title": "CVE-2014-9164", "type": "cve", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-12-21T12:15:56", "bulletinFamily": "NVD", "description": "Adobe Flash Player before 13.0.0.259 and 14.x through 16.x before 16.0.0.235 on Windows and OS X and before 11.2.202.425 on Linux allows attackers to obtain sensitive information via unspecified vectors.", "modified": "2018-12-20T12:53:41", "published": "2014-12-10T16:59:34", "id": "CVE-2014-9162", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-9162", "title": "CVE-2014-9162", "type": "cve", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-12-21T12:15:56", "bulletinFamily": "NVD", "description": "Stack-based buffer overflow in Adobe Flash Player before 13.0.0.259 and 14.x and 15.x before 15.0.0.246 on Windows and OS X and before 11.2.202.425 on Linux allows attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in December 2014.", "modified": "2018-12-20T12:53:32", "published": "2014-12-10T16:59:35", "id": "CVE-2014-9163", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-9163", "title": "CVE-2014-9163", "type": "cve", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-12-21T12:15:55", "bulletinFamily": "NVD", "description": "Use-after-free vulnerability in Adobe Flash Player before 13.0.0.259 and 14.x through 16.x before 16.0.0.235 on Windows and OS X and before 11.2.202.425 on Linux allows attackers to execute arbitrary code via unspecified vectors.", "modified": "2018-12-20T12:52:57", "published": "2014-12-10T16:59:17", "id": "CVE-2014-8443", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-8443", "title": "CVE-2014-8443", "type": "cve", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-12-14T12:16:07", "bulletinFamily": "NVD", "description": "Adobe Flash Player before 13.0.0.259 and 14.x through 16.x before 16.0.0.235 on Windows and OS X and before 11.2.202.425 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-9164.", "modified": "2018-12-13T12:16:35", "published": "2014-12-10T16:59:01", "id": "CVE-2014-0587", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0587", "title": "CVE-2014-0587", "type": "cve", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-12-14T12:16:07", "bulletinFamily": "NVD", "description": "Adobe Flash Player before 13.0.0.259 and 14.x through 16.x before 16.0.0.235 on Windows and OS X and before 11.2.202.425 on Linux allows remote attackers to bypass the Same Origin Policy via unspecified vectors.", "modified": "2018-12-13T12:15:21", "published": "2014-12-10T16:59:00", "id": "CVE-2014-0580", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0580", "title": "CVE-2014-0580", "type": "cve", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "gentoo": [{"lastseen": "2016-09-06T19:46:42", "bulletinFamily": "unix", "description": "### Background\n\nThe Adobe Flash Player is a renderer for the SWF file format, which is commonly used to provide interactive websites. \n\n### Description\n\nMultiple vulnerabilities have been discovered in Adobe Flash Player. Please review the CVE identifiers referenced below for details. \n\n### Impact\n\nA remote attacker could possibly execute arbitrary code with the privileges of the process or bypass security restrictions. \n\n### Workaround\n\nThere is no known workaround at this time.\n\n### Resolution\n\nAll Adobe Flash Player users should upgrade to the latest version:\n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose\n \">=www-plugins/adobe-flash-11.2.202.425\"", "modified": "2014-12-11T00:00:00", "published": "2014-12-11T00:00:00", "id": "GLSA-201412-07", "href": "https://security.gentoo.org/glsa/201412-07", "type": "gentoo", "title": "Adobe Flash Player: Multiple vulnerabilities", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "symantec": [{"lastseen": "2018-03-11T18:48:58", "bulletinFamily": "software", "description": "### Description\n\nAdobe Flash Player is prone to a stack-based buffer-overflow vulnerability. Attackers can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts likely result in denial-of-service conditions.\n\n### Technologies Affected\n\n * Adobe Flash Player 10 \n * Adobe Flash Player 10.0.0.584 \n * Adobe Flash Player 10.0.12 .35 \n * Adobe Flash Player 10.0.12 .36 \n * Adobe Flash Player 10.0.12.10 \n * Adobe Flash Player 10.0.15 .3 \n * Adobe Flash Player 10.0.2.54 \n * Adobe Flash Player 10.0.22.87 \n * Adobe Flash Player 10.0.32 18 \n * Adobe Flash Player 10.0.32.18 \n * Adobe Flash Player 10.0.42.34 \n * Adobe Flash Player 10.0.45 2 \n * Adobe Flash Player 10.1 \n * Adobe Flash Player 10.1.102.64 \n * Adobe Flash Player 10.1.102.65 \n * Adobe Flash Player 10.1.105.6 \n * Adobe Flash Player 10.1.106.16 \n * Adobe Flash Player 10.1.106.17 \n * Adobe Flash Player 10.1.51.66 \n * Adobe Flash Player 10.1.52.14 \n * Adobe Flash Player 10.1.52.14.1 \n * Adobe Flash Player 10.1.52.15 \n * Adobe Flash Player 10.1.53.64 \n * Adobe Flash Player 10.1.82.76 \n * Adobe Flash Player 10.1.85.3 \n * Adobe Flash Player 10.1.92.10 \n * Adobe Flash Player 10.1.92.8 \n * Adobe Flash Player 10.1.95.1 \n * Adobe Flash Player 10.1.95.2 \n * Adobe Flash Player 10.2.152 \n * Adobe Flash Player 10.2.152.21 \n * Adobe Flash Player 10.2.152.26 \n * Adobe Flash Player 10.2.152.32 \n * Adobe Flash Player 10.2.152.33 \n * Adobe Flash Player 10.2.153.1 \n * Adobe Flash Player 10.2.154.13 \n * Adobe Flash Player 10.2.154.18 \n * Adobe Flash Player 10.2.154.24 \n * Adobe Flash Player 10.2.154.25 \n * Adobe Flash Player 10.2.154.27 \n * Adobe Flash Player 10.2.154.28 \n * Adobe Flash Player 10.2.156.12 \n * Adobe Flash Player 10.2.157.51 \n * Adobe Flash Player 10.2.159.1 \n * Adobe Flash Player 10.3.181.14 \n * Adobe Flash Player 10.3.181.16 \n * Adobe Flash Player 10.3.181.22 \n * Adobe Flash Player 10.3.181.23 \n * Adobe Flash Player 10.3.181.26 \n * Adobe Flash Player 10.3.181.34 \n * Adobe Flash Player 10.3.183.10 \n * Adobe Flash Player 10.3.183.11 \n * Adobe Flash Player 10.3.183.15 \n * Adobe Flash Player 10.3.183.16 \n * Adobe Flash Player 10.3.183.18 \n * Adobe Flash Player 10.3.183.19 \n * Adobe Flash Player 10.3.183.20 \n * Adobe Flash Player 10.3.183.23 \n * Adobe Flash Player 10.3.183.25 \n * Adobe Flash Player 10.3.183.29 \n * Adobe Flash Player 10.3.183.4 \n * Adobe Flash Player 10.3.183.43 \n * Adobe Flash Player 10.3.183.48 \n * Adobe Flash Player 10.3.183.5 \n * Adobe Flash Player 10.3.183.50 \n * Adobe Flash Player 10.3.183.51 \n * Adobe Flash Player 10.3.183.61 \n * Adobe Flash Player 10.3.183.63 \n * Adobe Flash Player 10.3.183.67 \n * Adobe Flash Player 10.3.183.68 \n * Adobe Flash Player 10.3.183.7 \n * Adobe Flash Player 10.3.183.75 \n * Adobe Flash Player 10.3.183.86 \n * Adobe Flash Player 10.3.185.21 \n * Adobe Flash Player 10.3.185.22 \n * Adobe Flash Player 10.3.185.23 \n * Adobe Flash Player 10.3.185.24 \n * Adobe Flash Player 10.3.185.25 \n * Adobe Flash Player 10.3.186.2 \n * Adobe Flash Player 10.3.186.3 \n * Adobe Flash Player 10.3.186.6 \n * Adobe Flash Player 10.3.186.7 \n * Adobe Flash Player 11 \n * Adobe Flash Player 11.0 \n * Adobe Flash Player 11.0.1.129 \n * Adobe Flash Player 11.0.1.152 \n * Adobe Flash Player 11.0.1.153 \n * Adobe Flash Player 11.0.1.60 \n * Adobe Flash Player 11.0.1.98 \n * Adobe Flash Player 11.1 \n * Adobe Flash Player 11.1.102.228 \n * Adobe Flash Player 11.1.102.55 \n * Adobe Flash Player 11.1.102.59 \n * Adobe Flash Player 11.1.102.62 \n * Adobe Flash Player 11.1.102.63 \n * Adobe Flash Player 11.1.111.10 \n * Adobe Flash Player 11.1.111.44 \n * Adobe Flash Player 11.1.111.5 \n * Adobe Flash Player 11.1.111.50 \n * Adobe Flash Player 11.1.111.54 \n * Adobe Flash Player 11.1.111.6 \n * Adobe Flash Player 11.1.111.64 \n * Adobe Flash Player 11.1.111.7 \n * Adobe Flash Player 11.1.111.73 \n * Adobe Flash Player 11.1.111.8 \n * Adobe Flash Player 11.1.111.9 \n * Adobe Flash Player 11.1.112.61 \n * Adobe Flash Player 11.1.115.11 \n * Adobe Flash Player 11.1.115.34 \n * Adobe Flash Player 11.1.115.48 \n * Adobe Flash Player 11.1.115.54 \n * Adobe Flash Player 11.1.115.58 \n * Adobe Flash Player 11.1.115.59 \n * Adobe Flash Player 11.1.115.6 \n * Adobe Flash Player 11.1.115.63 \n * Adobe Flash Player 11.1.115.69 \n * Adobe Flash Player 11.1.115.7 \n * Adobe Flash Player 11.1.115.8 \n * Adobe Flash Player 11.1.115.81 \n * Adobe Flash Player 11.2.202 238 \n * Adobe Flash Player 11.2.202.160 \n * Adobe Flash Player 11.2.202.197 \n * Adobe Flash Player 11.2.202.221 \n * Adobe Flash Player 11.2.202.236 \n * Adobe Flash Player 11.2.202.280 \n * Adobe Flash Player 11.2.202.297 \n * Adobe Flash Player 11.2.202.341 \n * Adobe Flash Player 11.2.202.346 \n * Adobe Flash Player 11.2.202.350 \n * Adobe Flash Player 11.2.202.359 \n * Adobe Flash Player 11.2.202.400 \n * Adobe Flash Player 11.2.202.418 \n * Adobe Flash Player 11.2.202.424 \n * Adobe Flash Player 13.0.0.182 \n * Adobe Flash Player 13.0.0.201 \n * Adobe Flash Player 13.0.0.206 \n * Adobe Flash Player 13.0.0.214 \n * Adobe Flash Player 13.0.0.223 \n * Adobe Flash Player 13.0.0.231 \n * Adobe Flash Player 13.0.0.241 \n * Adobe Flash Player 13.0.0.244 \n * Adobe Flash Player 13.0.0.250 \n * Adobe Flash Player 13.0.0.252 \n * Adobe Flash Player 13.0.0.258 \n * Adobe Flash Player 14.0.0.125 \n * Adobe Flash Player 14.0.0.145 \n * Adobe Flash Player 14.0.0.176 \n * Adobe Flash Player 14.0.0.177 \n * Adobe Flash Player 14.0.0.179 \n * Adobe Flash Player 15.0.0.152 \n * Adobe Flash Player 15.0.0.189 \n * Adobe Flash Player 15.0.0.223 \n * Adobe Flash Player 15.0.0.239 \n * Adobe Flash Player 15.0.0.242 \n * Adobe Flash Player 2 \n * Adobe Flash Player 3 \n * Adobe Flash Player 4 \n * Adobe Flash Player 6 \n * Adobe Flash Player 6.0.21.0 \n * Adobe Flash Player 6.0.79 \n * Adobe Flash Player 7 \n * Adobe Flash Player 7.0.1 \n * Adobe Flash Player 7.0.14.0 \n * Adobe Flash Player 7.0.19.0 \n * Adobe Flash Player 7.0.24.0 \n * Adobe Flash Player 7.0.25 \n * Adobe Flash Player 7.0.53.0 \n * Adobe Flash Player 7.0.60.0 \n * Adobe Flash Player 7.0.61.0 \n * Adobe Flash Player 7.0.63 \n * Adobe Flash Player 7.0.66.0 \n * Adobe Flash Player 7.0.67.0 \n * Adobe Flash Player 7.0.68.0 \n * Adobe Flash Player 7.0.69.0 \n * Adobe Flash Player 7.0.70.0 \n * Adobe Flash Player 7.0.73.0 \n * Adobe Flash Player 7.1 \n * Adobe Flash Player 7.1.1 \n * Adobe Flash Player 7.2 \n * Adobe Flash Player 8 \n * Adobe Flash Player 8.0.22.0 \n * Adobe Flash Player 8.0.24.0 \n * Adobe Flash Player 8.0.33.0 \n * Adobe Flash Player 8.0.34.0 \n * Adobe Flash Player 8.0.35.0 \n * Adobe Flash Player 8.0.39.0 \n * Adobe Flash Player 8.0.42.0 \n * Adobe Flash Player 9 \n * Adobe Flash Player 9.0.112.0 \n * Adobe Flash Player 9.0.114.0 \n * Adobe Flash Player 9.0.115.0 \n * Adobe Flash Player 9.0.124.0 \n * Adobe Flash Player 9.0.125.0 \n * Adobe Flash Player 9.0.151 .0 \n * Adobe Flash Player 9.0.152 .0 \n * Adobe Flash Player 9.0.155.0 \n * Adobe Flash Player 9.0.159.0 \n * Adobe Flash Player 9.0.16 \n * Adobe Flash Player 9.0.18D60 \n * Adobe Flash Player 9.0.20 \n * Adobe Flash Player 9.0.20.0 \n * Adobe Flash Player 9.0.246 0 \n * Adobe Flash Player 9.0.246.0 \n * Adobe Flash Player 9.0.260.0 \n * Adobe Flash Player 9.0.262 \n * Adobe Flash Player 9.0.262.0 \n * Adobe Flash Player 9.0.277.0 \n * Adobe Flash Player 9.0.28.0 \n * Adobe Flash Player 9.0.280 \n * Adobe Flash Player 9.0.283.0 \n * Adobe Flash Player 9.0.289.0 \n * Adobe Flash Player 9.0.31.0 \n * Adobe Flash Player 9.0.45.0 \n * Adobe Flash Player 9.0.47.0 \n * Adobe Flash Player 9.0.48.0 \n * Adobe Flash Player 9.0.8.0 \n * Adobe Flash Player 9.0.9.0 \n * Adobe Flash Player 9.125.0 \n * Gentoo Linux \n * Microsoft Internet Explorer 10 \n * Microsoft Internet Explorer 11 \n * Red Hat Enterprise Linux Desktop Supplementary 5 Client \n * Red Hat Enterprise Linux Desktop Supplementary 6 \n * Red Hat Enterprise Linux Server Supplementary 6 \n * Red Hat Enterprise Linux Supplementary 5 Server \n * Red Hat Enterprise Linux Workstation Supplementary 6 \n\n### Recommendations\n\n**Deploy network intrusion detection systems to monitor network traffic for malicious activity.** \nDeploy NIDS to monitor network traffic for signs of anomalous or suspicious activity. This includes but is not limited to requests that include NOP sleds and unexplained incoming and outgoing traffic. This may indicate exploit attempts or activity that results from a successful exploit. \n\n**Do not accept or execute files from untrusted or unknown sources.** \nTo limit exposure to these and other latent vulnerabilities, never handle files that originate from unfamiliar or untrusted sources.\n\n**Do not follow links provided by unknown or untrusted sources.** \nTo reduce the likelihood of successful exploits, never visit sites of questionable integrity or follow links provided by unfamiliar or untrusted sources.\n\n**Implement multiple redundant layers of security.** \nAs an added precaution, deploy memory-protection schemes (such as nonexecutable stack/heap configuration and randomly mapped memory segments). This may complicate exploits of memory-corruption vulnerabilities.\n\n**Run all software as a nonprivileged user with minimal access rights.** \nTo reduce the impact of latent vulnerabilities, run applications with the minimal amount of privileges required for functionality. \n\nUpdates are available. Please see the references or vendor advisory for more information.\n", "modified": "2014-12-09T00:00:00", "published": "2014-12-09T00:00:00", "id": "SMNTC-71582", "href": "https://www.symantec.com/content/symantec/english/en/security-center/vulnerabilities/writeup.html/71582", "type": "symantec", "title": "Adobe Flash Player CVE-2014-9163 Stack Based Buffer Overflow Vulnerability", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "zdi": [{"lastseen": "2016-11-09T00:18:06", "bulletinFamily": "info", "description": "This vulnerability allows remote attackers to disclose arbitrary memory on vulnerable installations of Adobe Flash. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within Regular Expression Objects. By matching a specially crafted regular expression, it is possible for an attacker to force out-of-bounds reads. An attacker can leverage this vulnerability to disclose arbitrary memory.", "modified": "2014-11-09T00:00:00", "published": "2014-12-09T00:00:00", "href": "http://www.zerodayinitiative.com/advisories/ZDI-14-416", "id": "ZDI-14-416", "title": "Adobe Flash Player Regular Expression Object Out-Of-Bound Read Information Disclosure Vulnerability", "type": "zdi", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2016-11-09T00:17:47", "bulletinFamily": "info", "description": "This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists when calling parseFloat on a specific datatype. This can allow for an attacker to cause a fixed size stack buffer to overflow. An attacker can leverage this vulnerability to execute code within the context of the current process.", "modified": "2014-11-09T00:00:00", "published": "2014-12-09T00:00:00", "href": "http://www.zerodayinitiative.com/advisories/ZDI-14-417", "id": "ZDI-14-417", "title": "Adobe Flash Player parseFloat Stack Buffer Overflow Remote Code Execution Vulnerability", "type": "zdi", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "zdt": [{"lastseen": "2018-02-06T01:13:57", "bulletinFamily": "exploit", "description": "This vulnerability allows remote attackers to disclose arbitrary memory on vulnerable installations of Adobe Flash. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\r The specific flaw exists within Regular Expression Objects. By matching a specially crafted regular expression, it is possible for an attacker to force out-of-bounds reads. An attacker can leverage this vulnerability to disclose arbitrary memory.\n\nThis is private exploit. You can buy it at https://0day.today", "modified": "2014-12-10T00:00:00", "published": "2014-12-10T00:00:00", "id": "1337DAY-ID-22988", "href": "https://0day.today/exploit/description/22988", "type": "zdt", "title": "Adobe Flash Player Regular Expression Object Out-Of-Bound Read Information Disclosure Vulnerability", "sourceData": "", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "sourceHref": ""}, {"lastseen": "2018-01-03T17:06:54", "bulletinFamily": "exploit", "description": "This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\r The specific flaw exists when calling parseFloat on a specific datatype. This can allow for an attacker to cause a fixed size stack buffer to overflow. An attacker can leverage this vulnerability to execute code within the context of the current process.\n\nThis is private exploit. You can buy it at https://0day.today", "modified": "2014-12-10T00:00:00", "published": "2014-12-10T00:00:00", "id": "1337DAY-ID-22989", "href": "https://0day.today/exploit/description/22989", "type": "zdt", "title": "Adobe Flash Player parseFloat Stack Buffer Overflow Remote Code Execution Vulnerability", "sourceData": "", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "sourceHref": ""}], "threatpost": [{"lastseen": "2018-10-06T22:57:43", "bulletinFamily": "info", "description": "As expected, Adobe today patched a vulnerability in Adobe Reader disclosed last week by Google\u2019s Project Zero. What was unexpected was a Flash Player update that includes a patch for a vulnerability being exploited in the wild, Adobe said.\n\nAdobe had announced last Thursday in its [pre-notification advisory](<http://threatpost.com/upcoming-adobe-reader-acrobat-update-to-patch-sandbox-escape/109738>) that it would be issuing a security update for Adobe Reader and Acrobat, but no mention of the [Flash update](<http://helpx.adobe.com/security/products/flash-player/apsb14-27.html>) was made. Adobe has been busy shoring up Flash Player security with two updates in November, including an out-of-band emergency fix for a remote code execution vulnerability already included in a number of popular exploit kits. Earlier in November, Adobe patched 18 vulnerabilities in Flash Player as part of its regular update cycle.\n\nToday\u2019s patches affect version 15.0.0.239 and earlier, and 13.0.0.258 and earlier 13.x versions for Windows and Macintosh and 11.2.202.424 and earlier for Linux. All except the Linux bug received Adobe\u2019s most severe priority warning. In all, the update patches six vulnerabilities, Adobe said, with the public exploit targeting [CVE-2014-9163](<http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-9163>). Researcher bilou of HP\u2019s Zero Day Initiative reported the issue to Adobe.\n\n\u201cThese updates address vulnerabilities that could potentially allow an attacker to take control of the affected system,\u201d Adobe said in its advisory.\n\nThe [Adobe Reader and Acrobat update](<http://helpx.adobe.com/security/products/reader/apsb14-28.html>) patches 20 vulnerabilities, including [CVE-2014-9150](<https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-9150>), which could allow an attacker to escape the Reader sandbox and attack the underlying computer.\n\nOn Dec. 1, researcher James Forshaw, a well-known bug-hunter and Project Zero member, went public with details of a sandbox escape vulnerability in Reader, as well as exploit code. Per its policy, Google\u2019s security research team discloses vulnerability details 90 days after it shares those details with the vendor in question. In this case, the vulnerability was partially addressed earlier by Adobe after it was reported in August. Adobe tweaked Reader in order to make exploiting the vulnerability much more difficult. The flaw, however, had not been patched. Adobe\u2019s adjustment to Reader in version 11.0.9 prevented the vulnerability from using the broker file system hooks to create directory junctions, Forshaw said.\n\nThe vulnerability is a race condition in the MoveFileEx call hook in Reader which, if exploited, bypasses the built-in sandbox and allows an attacker to write files in arbitrary locations. Today\u2019s update patches the flaw in Adobe Reader 11.0.09 and earlier, and 10.1.12 and earlier, as well as Acrobat 11.0.09 and earlier, and Acrobat 10.1.12 and earlier for Windows and Macintosh, Adobe said.\n\nAdobe also released [security hotfixes for ColdFusion](<http://helpx.adobe.com/security/products/coldfusion/apsb14-29.html>), its web application development platform. The update patches one vulnerability in ColdFusion 11 and 10 for Windows.\n\n\u201cThese hotfixes address a resource consumption issue that could potentially result in denial of service for ColdFusion running on Windows,\u201d Adobe said, adding it is not aware of public exploits.\n\nColdFusion 11 users should look for Hotfix version Update 3 and ColdFusion 10 should apply Hotfix version Update 15, Adobe said.\n", "modified": "2014-12-09T20:00:41", "published": "2014-12-09T12:17:22", "id": "THREATPOST:9BE67D302F9BD9AE34466338ACE81308", "href": "https://threatpost.com/adobe-patches-flash-player-vulnerability-under-attack/109773/", "type": "threatpost", "title": "December 2014 Adobe Flash, Reader, Acrobat, ColdFusion Patch", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-10-06T22:57:23", "bulletinFamily": "info", "description": "A Chinese APT group was able to chain together two zero day vulnerabilities, one against Adobe\u2019s Flash Player and one against Microsoft\u2019s Internet Explorer 9, to compromise a popular news site late last year.\n\nThe group\u2019s aim was to gain access to computers at several U.S. defense and financial firms by setting up a watering hole attack on the site that would go on to drop a malicious .DLL.\n\nResearchers with Invincea and iSIGHT Partners worked in tandem to dig up information about the group, which was able to compromise a part of Forbes.com\u2019s website that appears to users before they\u2019re ported over to articles they\u2019ve clicked on. That portion of the site, Forbes.com\u2019s Thought of the Day, is powered by a Flash widget.\n\nAccording to researchers with Invincea the group was able to use a zero day vulnerability to hijack that widget for a short period, from Nov. 28 to Dec. 1. Over the course of those four days, the group targeted visitors to the site who worked at a handful of unnamed U.S. defense and financial firms.\n\nResearchers with [iSIGHT discovered](<http://www.isightpartners.com/2015/02/codoso/>) that in addition to the Flash flaw, the attackers also exploited an Internet Explorer vulnerability, a zero day that helped attackers bypass Address Space Layout Randomization (ASLR) in IE 9.\n\nWhile the Adobe bug, a buffer overflow (CVE-2014-9163) was patched [back on Dec. 9](<http://threatpost.com/adobe-patches-flash-player-vulnerability-under-attack/109773>), the ASLR mitigation bypass (CVE-2015-0071) was one of many patched yesterday in Microsoft\u2019s monthly Patch Tuesday round of patches, an update that was [especially heavy on Internet Explorer fixes](<http://threatpost.com/monster-ie-update-top-patch-tuesday-priority/110978>).\n\nIn a [technical writeup of the attack](<http://www.invincea.com/2015/02/chinese-espionage-campaign-compromises-forbes/>) yesterday, Invincea explained how Forbes\u2019 site was able to redirect to an IP address, load the Flash exploit, and drop a DLL, hrn.dll, to be loaded into the machine\u2019s memory.\n\n\u201cOnce in memory, the exploit gains administrative privileges and opens a command prompt,\u201d Invincea\u2019s executive summary reads, \u201cNext the victim system was scanned to report on its current patch levels, network mapping, and complete IP configuration, including any VPN connections.\u201d\n\n[](<https://media.threatpost.com/wp-content/uploads/sites/103/2015/02/07005659/report_graphic_1.png>)\n\nBoth firms agreed to set their disclosures for yesterday to coincide with Microsoft\u2019s patching of the Internet Explorer bug.\n\nWhile Chinese APT groups have been in the news lately \u2013 [some reports](<http://www.washingtonpost.com/blogs/the-switch/wp/2015/02/06/the-switchboard-chinese-hackers-may-be-responsible-for-the-anthem-breach/>) have already pinned last week\u2019s [Anthem breach](<http://threatpost.com/anthem-data-breach-could-affect-millions-of-consumers/110867>) on shadowy hackers from the PRC \u2013 several firms are already familiar with the APT group behind this campaign. FireEye, first published research on the group back in 2013, referring to the collective as the [Sunshop Group](<http://threatpost.com/ie-8-zero-day-pops-up-in-targeted-attacks-against-korean-military-sites/100728>). Researchers there caught the group carrying out a campaign that hit a series of victims \u2013 a science and technology journal, a website for evangelical students, etc. \u2013 by exploiting an IE zero day and several Java bugs in May of that year.\n\n> Chinese APT group uses IE, Flash zero days to compromise Forbes.com, via @threatpost\n> \n> [Tweet](<https://twitter.com/share?url=https%3A%2F%2Fthreatpost.com%2Fchinese-hackers-compromised-forbes-com-using-ie-flash-zero-days%2F110996%2F&text=Chinese+APT+group+uses+IE%2C+Flash+zero+days+to+compromise+Forbes.com%2C+via+%40threatpost>)\n\nThroughout its research, dating back to 2010, iSIGHT has taken to calling the group Codoso Team. This attack, like others its linked back to them, used similar malware (Derusbi) and called on a command and control (C+C) domain its been seen using in the past as well.\n\nRegardless of what it goes by, the group has been seen targeting U.S. government entities, the military/defense sector, and financial services groups for at least five years running. FireEye found the same group was also responsible for hacking the Nobel Peace Prize Committee website in 2010. That attack also used a watering hole and made use of a browser (Firefox) zero day.\n\nWhile neither iSIGHT or Invincea could give concrete numbers regarding the number of victims Codoso was able to compromise with this campaign, both were firm in their stance that the attacks were highly targeted in nature and only visitors who worked at the defense and financial firms were infected.\n", "modified": "2015-02-11T21:07:36", "published": "2015-02-11T16:07:36", "id": "THREATPOST:A612D2B3CACFBC22A53E82B3FA7D4072", "href": "https://threatpost.com/chinese-hackers-compromised-forbes-com-using-ie-flash-zero-days/110996/", "type": "threatpost", "title": "Chinese Hackers Compromised Forbes.com Using IE, Flash Zero Days", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}]}