Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2018-2022 and is owned by Tenable, Inc. or an Affiliate thereof.REDHAT-RHSA-2018-1827.NASL
HistoryJun 12, 2018 - 12:00 a.m.

RHEL 6 : flash-plugin (RHSA-2018:1827)

2018-06-1200:00:00
This script is Copyright (C) 2018-2022 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
21

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.031 Low

EPSS

Percentile

91.1%

JSON

An update for flash-plugin is now available for Red Hat Enterprise Linux 6 Supplementary.

Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in.

This update upgrades Flash Player to version 30.0.0.113.

Security Fix(es) :

  • flash-plugin: Arbitrary Code Execution vulnerability (APSB18-19) (CVE-2018-4945)

  • flash-plugin: Arbitrary Code Execution vulnerability (APSB18-19) (CVE-2018-5002)

  • flash-plugin: Information Disclosure vulnerabilities (APSB18-19) (CVE-2018-5000, CVE-2018-5001)

For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Red Hat Security Advisory RHSA-2018:1827. The text 
# itself is copyright (C) Red Hat, Inc.
#

include('compat.inc');

if (description)
{
  script_id(110469);
  script_version("1.12");
  script_set_attribute(attribute:"plugin_modification_date", value:"2022/05/25");

  script_cve_id(
    "CVE-2018-4945",
    "CVE-2018-5000",
    "CVE-2018-5001",
    "CVE-2018-5002"
  );
  script_xref(name:"RHSA", value:"2018:1827");
  script_xref(name:"CISA-KNOWN-EXPLOITED", value:"2022/06/13");

  script_name(english:"RHEL 6 : flash-plugin (RHSA-2018:1827)");

  script_set_attribute(attribute:"synopsis", value:
"The remote Red Hat host is missing a security update.");
  script_set_attribute(attribute:"description", value:
"An update for flash-plugin is now available for Red Hat Enterprise
Linux 6 Supplementary.

Red Hat Product Security has rated this update as having a security
impact of Critical. A Common Vulnerability Scoring System (CVSS) base
score, which gives a detailed severity rating, is available for each
vulnerability from the CVE link(s) in the References section.

The flash-plugin package contains a Mozilla Firefox compatible Adobe
Flash Player web browser plug-in.

This update upgrades Flash Player to version 30.0.0.113.

Security Fix(es) :

* flash-plugin: Arbitrary Code Execution vulnerability (APSB18-19)
(CVE-2018-4945)

* flash-plugin: Arbitrary Code Execution vulnerability (APSB18-19)
(CVE-2018-5002)

* flash-plugin: Information Disclosure vulnerabilities (APSB18-19)
(CVE-2018-5000, CVE-2018-5001)

For more details about the security issue(s), including the impact, a
CVSS score, and other related information, refer to the CVE page(s)
listed in the References section.");
  script_set_attribute(attribute:"see_also", value:"https://helpx.adobe.com/security/products/flash-player/apsb18-19.html");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/errata/RHSA-2018:1827");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/cve-2018-4945");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/cve-2018-5000");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/cve-2018-5001");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/cve-2018-5002");
  script_set_attribute(attribute:"solution", value:
"Update the affected flash-plugin package.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:H/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2018-5002");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploited_by_malware", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2018/07/09");
  script_set_attribute(attribute:"patch_publication_date", value:"2018/06/11");
  script_set_attribute(attribute:"plugin_publication_date", value:"2018/06/12");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:flash-plugin");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:6");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Red Hat Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2018-2022 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Red Hat" >!< release) audit(AUDIT_OS_NOT, "Red Hat");
os_ver = pregmatch(pattern: "Red Hat Enterprise Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Red Hat");
os_ver = os_ver[1];
if (! preg(pattern:"^6([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Red Hat 6.x", "Red Hat " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "s390" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Red Hat", cpu);

yum_updateinfo = get_kb_item("Host/RedHat/yum-updateinfo");
if (!empty_or_null(yum_updateinfo)) 
{
  rhsa = "RHSA-2018:1827";
  yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);
  if (!empty_or_null(yum_report))
  {
    security_report_v4(
      port       : 0,
      severity   : SECURITY_HOLE,
      extra      : yum_report 
    );
    exit(0);
  }
  else
  {
    audit_message = "affected by Red Hat security advisory " + rhsa;
    audit(AUDIT_OS_NOT, audit_message);
  }
}
else
{
  flag = 0;
  if (rpm_check(release:"RHEL6", reference:"flash-plugin-30.0.0.113-1.el6_9")) flag++;

  if (flag)
  {
    flash_plugin_caveat = '\n' +
      'NOTE: This vulnerability check only applies to RedHat released\n' +
      'versions of the flash-plugin package. This check does not apply to\n' +
      'Adobe released versions of the flash-plugin package, which are\n' +
      'versioned similarly and cause collisions in detection.\n\n' +

      'If you are certain you are running the Adobe released package of\n' +
      'flash-plugin and are running a version of it equal or higher to the\n' +
      'RedHat version listed above then you can consider this a false\n' +
      'positive.\n';
    security_report_v4(
      port       : 0,
      severity   : SECURITY_HOLE,
      extra      : rpm_report_get() + redhat_report_package_caveat() + flash_plugin_caveat
    );
    exit(0);
  }
  else
  {
    tested = pkg_tests_get();
    if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
    else audit(AUDIT_PACKAGE_NOT_INSTALLED, "flash-plugin");
  }
}
VendorProductVersionCPE
redhatenterprise_linux6cpe:/o:redhat:enterprise_linux:6
redhatenterprise_linuxflash-pluginp-cpe:/a:redhat:enterprise_linux:flash-plugin

Related

freebsd 1
openvas 8
archlinux 1
nessus 6
kaspersky 2
trendmicroblog 1
adobe 1
redhat 1
mscve 1
threatpost 3
gentoo 1
thn 1
mageia 1
redhatcve 4
ubuntucve 4
zdi 3
checkpoint_advisories 4
nvd 4
cve 4
prion 4
cvelist 4
attackerkb 1
cisa_kev 1
myhack58 3
krebs 1
malwarebytes 1
securelist 1
freebsd
freebsd
Flash Player -- multiple vulnerabilities
2018-06-07 00:00:00
openvas
openvas
Adobe Flash Player Security Updates (APSB18-19) - Linux
2018-06-08 00:00:00
Adobe Flash Player Within Google Chrome Security Update (APSB18-19) - Windows
2018-06-08 00:00:00
Adobe Flash Player Within Google Chrome Security Update (APSB18-19) - Mac OS X
2018-06-08 00:00:00
archlinux
archlinux
[ASA-201806-7] flashplugin: multiple issues
2018-06-09 00:00:00
nessus
nessus
FreeBSD : Flash Player -- multiple vulnerabilities (2dde5a56-6ab1-11e8-b639-6451062f0f7a)
2018-06-08 00:00:00
Flash Player < 30.0.0.113 Multiple Vulnerabilities (APSB18-19)
2019-03-20 00:00:00
KB4287903: Security update for Adobe Flash Player (June 2018)
2018-06-08 00:00:00
kaspersky
kaspersky
KLA11261 Multiple vulnerabilities in Adobe Flash player
2018-06-06 00:00:00
KLA11260 SB vulnerability in Google Chrome
2018-06-06 00:00:00
trendmicroblog
trendmicroblog
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of June 4, 2018
2018-06-08 15:12:05
adobe
adobe
APSB18-19 Security updates available for Adobe Flash Player
2018-06-07 00:00:00
redhat
redhat
(RHSA-2018:1827) Critical: flash-plugin security update
2018-06-11 12:45:39
mscve
mscve
June 2018 Adobe Flash Security Update
2018-06-07 07:00:00
threatpost
threatpost
Adobe Patches Critical Flash Player Bug With Active Exploit
2018-06-07 13:14:25
Zero-Day Flash Exploit Targeting Middle East
2018-06-07 20:05:52
Threat Groups SandCat, FruityArmor Exploiting Microsoft Win32k Flaw
2019-03-13 15:15:11
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2018-06-13 00:00:00
thn
thn
Adobe Issues Patch for Actively Exploited Flash Player Zero-Day Exploit
2018-06-07 15:51:00
mageia
mageia
Updated flash-player-plugin packages fixes security issues
2018-06-16 12:28:36
redhatcve
redhatcve
CVE-2018-5001
2019-10-11 15:56:27
CVE-2018-5000
2018-06-07 13:20:02
CVE-2018-4945
2018-06-07 13:18:56
ubuntucve
ubuntucve
CVE-2018-4945
2018-07-09 00:00:00
CVE-2018-5001
2018-07-09 00:00:00
CVE-2018-5002
2018-07-09 00:00:00
zdi
zdi
Adobe Flash Microphone Type Confusion Remote Code Execution Vulnerability
2018-06-07 00:00:00
Adobe Flash Player BitmapData applyFilter Out-Of-Bounds Read Remote Code Execution Vulnerability
2018-06-07 00:00:00
Adobe Flash RTMP Parsing Integer Overflow Information Disclosure Vulnerability
2018-06-07 00:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player Type Confusion (APSB18-19: CVE-2018-4945)
2018-06-12 00:00:00
Adobe Flash Player Out-of-bounds read (APSB18-19: CVE-2018-5001)
2018-06-12 00:00:00
Adobe Flash Player Buffer Overflow (CVE-2018-5002)
2018-06-07 00:00:00
nvd
nvd
CVE-2018-4945
2018-07-09 19:29:00
CVE-2018-5001
2018-07-09 19:29:03
CVE-2018-5002
2018-07-09 19:29:03
cve
cve
CVE-2018-4945
2018-07-09 19:29:00
CVE-2018-5001
2018-07-09 19:29:03
CVE-2018-5002
2018-07-09 19:29:03
prion
prion
Type confusion
2018-07-09 19:29:00
Out-of-bounds
2018-07-09 19:29:00
Stack overflow
2018-07-09 19:29:00
cvelist
cvelist
CVE-2018-4945
2018-07-09 19:00:00
CVE-2018-5001
2018-07-09 19:00:00
CVE-2018-5002
2018-07-09 19:00:00
attackerkb
attackerkb
CVE-2018-5002
2018-07-09 00:00:00
cisa_kev
cisa_kev
Adobe Flash Player Stack-based Buffer Overflow Vulnerability
2022-05-23 00:00:00
myhack58
myhack58
FLASH zero-day Vulnerability CVE-2018-5002 in the Middle East directed network attacks exploit-vulnerability warning-the black bar safety net
2018-06-21 00:00:00
Hacking Team to make a comeback it? CVE-2018-5002 Flash 0day vulnerability APT attack analysis and Association-bug warning-the black bar safety net
2018-06-13 00:00:00
The macro perspective of the office vulnerability, 2010-2018-a vulnerability warning-the black bar safety net
2019-06-13 00:00:00
krebs
krebs
Adobe Patches Zero-Day Flash Flaw
2018-06-07 16:37:50
malwarebytes
malwarebytes
Exploit kits: Spring 2018 review
2018-06-12 19:04:14
securelist
securelist
IT threat evolution Q2 2018. Statistics
2018-08-06 10:00:04

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.031 Low

EPSS

Percentile

91.1%

JSON
Related for REDHAT-RHSA-2018-1827.NASL
freebsd1openvas8archlinux1nessus6kaspersky2trendmicroblog1adobe1redhat1mscve1threatpost3gentoo1thn1mageia1redhatcve4ubuntucve4zdi3checkpoint_advisories4nvd4cve4prion4cvelist4attackerkb1cisa_kev1myhack583krebs1malwarebytes1securelist1