Lucene search
This script is Copyright (C) 2015-2022 and is owned by Tenable, Inc. or an Affiliate thereof.MACOSX_GOOGLE_CHROME_40_0_2214_93.NASLHistoryJan 27, 2015 - 12:00 a.m.
Google Chrome < 40.0.2214.93 Flash Player Multiple Remote Code Execution (Mac OS X)
2015-01-2700:00:00
This script is Copyright (C) 2015-2022 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
28
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.972
Percentile
99.9%
The version of Google Chrome installed on the remote Mac OS X host is prior to 40.0.2214.93. It is, therefore, affected by the following vulnerabilities :
-
A use-after-free error exists that allows an attacker to crash the application or execute arbitrary code.
(CVE-2015-0311) -
A double-free error exists that allows an attacker to crash the application or possibly execute arbitrary code. (CVE-2015-0312)
#
# (C) Tenable Network Security, Inc.
#
include('compat.inc');
if (description)
{
script_id(81021);
script_version("1.15");
script_set_attribute(attribute:"plugin_modification_date", value:"2022/04/22");
script_cve_id("CVE-2015-0311", "CVE-2015-0312");
script_bugtraq_id(72283, 72343);
script_xref(name:"CISA-KNOWN-EXPLOITED", value:"2022/05/04");
script_name(english:"Google Chrome < 40.0.2214.93 Flash Player Multiple Remote Code Execution (Mac OS X)");
script_set_attribute(attribute:"synopsis", value:
"The remote Mac OS X host contains a web browser that is affected by
multiple remote code execution vulnerabilities.");
script_set_attribute(attribute:"description", value:
"The version of Google Chrome installed on the remote Mac OS X host is
prior to 40.0.2214.93. It is, therefore, affected by the following
vulnerabilities :
- A use-after-free error exists that allows an attacker to
crash the application or execute arbitrary code.
(CVE-2015-0311)
- A double-free error exists that allows an attacker to
crash the application or possibly execute arbitrary
code. (CVE-2015-0312)");
# http://googlechromereleases.blogspot.com/2015/01/stable-channel-update_26.html
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?d2bec23e");
script_set_attribute(attribute:"see_also", value:"https://helpx.adobe.com/security/products/flash-player/apsb15-03.html");
script_set_attribute(attribute:"solution", value:
"Upgrade to Google Chrome 40.0.2214.93 or later.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2015-0311");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"exploit_framework_core", value:"true");
script_set_attribute(attribute:"exploited_by_malware", value:"true");
script_set_attribute(attribute:"metasploit_name", value:'Adobe Flash Player ByteArray UncompressViaZlibVariant Use After Free');
script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2015/01/21");
script_set_attribute(attribute:"patch_publication_date", value:"2015/01/26");
script_set_attribute(attribute:"plugin_publication_date", value:"2015/01/27");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:google:chrome");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"MacOS X Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2015-2022 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("macosx_google_chrome_installed.nbin");
script_require_keys("MacOSX/Google Chrome/Installed");
exit(0);
}
include("google_chrome_version.inc");
get_kb_item_or_exit("MacOSX/Google Chrome/Installed");
google_chrome_check_version(fix:'40.0.2214.93', severity:SECURITY_HOLE, xss:FALSE);
Related
openvas
openvas
nessus
nessus
Google Chrome < 40.0.2214.93 Flash Player Multiple Remote Code Execution
2015-01-27 00:00:00
Flash Player For Mac <= 16.0.0.287 Unspecified Code Execution (APSA15-01)
2015-01-26 00:00:00
mageia
mageia
Updated flash-player-plugin packages fix security vulnerabilities
2015-01-28 00:08:29
redhat
redhat
(RHSA-2015:0094) Critical: flash-plugin security update
2015-01-27 00:00:00
prion
prion
Double free
2015-01-28 22:59:00
Code injection
2015-01-23 21:59:00
symantec
symantec
cvelist
cvelist
CVE-2015-0312
2015-01-28 22:00:00
CVE-2015-0311
2015-01-23 21:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Double Free (APSB15-03: CVE-2015-0312)
2015-02-01 00:00:00
Adobe Flash Player Action Script Evasion (CVE-2015-0310; CVE-2015-0311)
2015-01-26 00:00:00
ubuntucve
ubuntucve
CVE-2015-0312
2015-01-28 00:00:00
CVE-2015-0311
2015-01-23 00:00:00
hackerone
hackerone
nvd
nvd
CVE-2015-0312
2015-01-28 22:59:01
CVE-2015-0311
2015-01-23 21:59:04
suse
suse
Security update for flash-player (critical)
2015-01-27 14:04:56
Security update for flash-player (critical)
2015-01-27 10:05:24
Security update for flash-player (critical)
2015-01-28 19:08:21
freebsd
freebsd
Adobe Flash Player -- critical vulnerability
2015-01-22 00:00:00
cve
cve
CVE-2015-0312
2015-01-28 22:59:01
CVE-2015-0311
2015-01-23 21:59:04
seebug
seebug
Adobe Flash Player Convolution Filter UAF ๅฝไปคๆง่ก
2015-07-08 00:00:00
threatpost
threatpost
1,800 Domains Overtaken by Flash Zero Day
2015-02-03 14:27:13
Control Flow Guard Mitigation Bypass
2015-09-22 15:00:11
Adobe Auto-Update Flash Player Zero Day Patch
2015-01-26 11:17:58
cisa_kev
cisa_kev
Adobe Flash Player Remote Code Execution Vulnerability
2022-04-13 00:00:00
packetstorm
packetstorm
Adobe Flash Player ByteArray UncompressViaZlibVariant Use After Free
2015-03-12 00:00:00
exploitdb
exploitdb
zdt
zdt
Adobe Flash Player ByteArray UncompressViaZlibVariant Use After Free Exploit
2015-03-12 00:00:00
attackerkb
attackerkb
CVE-2015-0311
2015-01-23 00:00:00
metasploit
metasploit
Adobe Flash Player ByteArray UncompressViaZlibVariant Use After Free
2015-05-20 23:57:59
cisa
cisa
Security Advisory for Adobe Flash Player
2015-01-26 00:00:00
thn
thn
Adobe patches 2nd Flash Player Zero-day Vulnerability
2015-01-25 08:11:00
Another Unpatched Adobe Flash Zero-Day vulnerability Exploited in the Wild
2015-02-02 06:29:00
archlinux
archlinux
flashplugin: multiple issues
2015-01-23 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2015-02-06 00:00:00
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.972
Percentile
99.9%
Related for MACOSX_GOOGLE_CHROME_40_0_2214_93.NASL