Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.SMB_KB2796096.NASL
HistoryJan 09, 2013 - 12:00 a.m.

MS KB2796096: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer 10

2013-01-0900:00:00
This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
12

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.019 Low

EPSS

Percentile

88.5%

JSON

The remote host is missing KB2796096. It may, therefore, be affected by an unspecified error in the installed version of Adobe Flash ActiveX control, which could allow a buffer overflow vulnerability that could lead to code execution.

#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(63426);
  script_version("1.11");
  script_cvs_date("Date: 2019/12/04");

  script_cve_id("CVE-2013-0630");
  script_bugtraq_id(57184);
  script_xref(name:"MSKB", value:"2796096");

  script_name(english:"MS KB2796096: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer 10");
  script_summary(english:"Checks version of ActiveX control");

  script_set_attribute(attribute:"synopsis", value:
"The remote host has a vulnerable ActiveX control installed.");
  script_set_attribute(attribute:"description", value:
"The remote host is missing KB2796096.  It may, therefore, be affected
by an unspecified error in the installed version of Adobe Flash ActiveX
control, which could allow a buffer overflow vulnerability that could
lead to code execution.");
  script_set_attribute(attribute:"see_also", value:"http://www.adobe.com/support/security/bulletins/apsb13-01.html");
  script_set_attribute(attribute:"see_also", value:"https://support.microsoft.com/en-us/help/2796096/microsoft-security-advisory-update-for-vulnerabilities-in-adobe-flash");
  script_set_attribute(attribute:"see_also", value:"https://docs.microsoft.com/en-us/security-updates/SecurityAdvisories/2016/2755801");
  script_set_attribute(attribute:"solution", value:
"Install Microsoft KB2796096.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2013-0630");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2013/01/08");
  script_set_attribute(attribute:"patch_publication_date", value:"2013/01/08");
  script_set_attribute(attribute:"plugin_publication_date", value:"2013/01/09");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:microsoft:windows");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:adobe:flash_player");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Windows");

  script_copyright(english:"This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("smb_hotfixes.nasl");
  script_require_keys("SMB/Registry/Enumerated", "SMB/WindowsVersion", "SMB/ProductName");
  script_require_ports(139, 445);

  exit(0);
}

include("audit.inc");
include("smb_func.inc");
include("smb_hotfixes.inc");
include("smb_hotfixes_fcheck.inc");
include("smb_activex_func.inc");
include("misc_func.inc");

get_kb_item_or_exit('SMB/WindowsVersion');
if (hotfix_check_sp_range(win8:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);
if (hotfix_check_server_core() == 1) audit(AUDIT_WIN_SERVER_CORE);

get_kb_item_or_exit("SMB/Registry/Enumerated");
if (activex_init() != ACX_OK) audit(AUDIT_FN_FAIL, "activex_init()");

# Adobe Flash Player CLSID
clsid = '{D27CDB6E-AE6D-11CF-96B8-444553540000}';

file = activex_get_filename(clsid:clsid);
if (isnull(file))
{
  activex_end();
  audit(AUDIT_FN_FAIL, "activex_get_filename", "NULL");
}
if (!file)
{
  activex_end();
  audit(AUDIT_ACTIVEX_NOT_FOUND, clsid);
}

# Get its version.
version = activex_get_fileversion(clsid:clsid);
if (!version)
{
  activex_end();
  audit(AUDIT_VER_FAIL, file);
}

info = '';

iver = split(version, sep:'.', keep:FALSE);
for (i=0; i<max_index(iver); i++)
 iver[i] = int(iver[i]);

# < 11.3.378.5
if( (report_paranoia > 1 || activex_get_killbit(clsid:clsid) == 0) &&
    (iver[0] < 11 ||
      (iver[0] == 11 &&
        (iver[1] < 3 ||
          (iver[1] == 3 && iver[2] < 378) ||
          (iver[1] == 3 && iver[2] == 378 && iver[3] < 5)
        )
      )
    )
  )
{
  info = '\n  Path              : ' + file +
         '\n  Installed version : ' + version +
         '\n  Fixed version     : 11.3.378.5\n';
}

port = kb_smb_transport();

if(info != '')
{
  if (report_verbosity > 0)
  {
    if (report_paranoia > 1)
    {
      report = info +
        '\n' +
        'Note, though, that Nessus did not check whether the kill bit was\n' +
        "set for the control's CLSID because of the Report Paranoia setting" + '\n' +
        'in effect when this scan was run.\n';
    }
    else
    {
      report = info +
        '\n' +
        'Moreover, its kill bit is not set so it is accessible via Internet\n' +
        'Explorer.\n';
    }
    security_hole(port:port, extra:report);
  }
  else security_hole(port);
}
else audit(AUDIT_HOST_NOT, 'affected');
VendorProductVersionCPE
microsoftwindowscpe:/o:microsoft:windows
adobeflash_playercpe:/a:adobe:flash_player

Related

nessus 15
redhat 1
cve 1
openvas 11
nvd 1
prion 1
cvelist 1
suse 1
threatpost 1
securityvulns 1
ubuntucve 1
thn 2
gentoo 1
nessus
nessus
openSUSE Security Update : flash-player (openSUSE-SU-2013:0364-1)
2014-06-13 00:00:00
Flash Player <= 10.3.183.48 / 11.5.502.135 Buffer Overflow (APSB13-01)
2011-01-12 00:00:00
Adobe AIR for Mac 3.x <= 3.5.0.890 Buffer Overflow (APSB13-01)
2013-01-09 00:00:00
redhat
redhat
(RHSA-2013:0149) Critical: flash-plugin security update
2013-01-09 00:00:00
cve
cve
CVE-2013-0630
2013-01-11 22:55:01
openvas
openvas
Adobe Air Buffer Overflow Vulnerability (Windows)
2013-03-21 00:00:00
Adobe Air Buffer Overflow Vulnerability - Windows
2013-03-21 00:00:00
Adobe Flash Player Buffer Overflow Vulnerability - Linux
2013-01-15 00:00:00
nvd
nvd
CVE-2013-0630
2013-01-11 22:55:01
prion
prion
Buffer overflow
2013-01-11 22:55:00
cvelist
cvelist
CVE-2013-0630
2013-01-11 22:00:00
suse
suse
Security update for flash-player (important)
2013-01-10 21:04:30
threatpost
threatpost
BlackBerry Warns of Z10, PlayBook Security Vulnerabilities
2013-06-12 12:54:05
securityvulns
securityvulns
Adobe Flash Player memory corruption
2013-01-14 00:00:00
ubuntucve
ubuntucve
CVE-2013-0630
2013-01-11 00:00:00
thn
thn
BlackBerry Z10 Privilege Escalation Vulnerability
2013-06-18 06:47:00
BlackBerry Z10 Privilege Escalation Vulnerability
2013-06-18 17:47:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2013-09-14 00:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.019 Low

EPSS

Percentile

88.5%

JSON
Related for SMB_KB2796096.NASL
nessus15redhat1cve1openvas11nvd1prion1cvelist1suse1threatpost1securityvulns1ubuntucve1thn2gentoo1