openSUSE-SU-2011:1240

SUSE-SU-2011:1244

SUSE-SA:2011:043

48819

GLSA-201204-07

http://www.adobe.com/support/security/bulletins/apsb11-28.html

oval:org.mitre.oval:def:14014

oval:org.mitre.oval:def:16179

The remote Solaris system is missing necessary patches to address security updates :

  - Adobe Flash Player before 10.3.183.11 and 11.x before     11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and     before 11.1.102.59 on Android, and Adobe AIR before     3.1.0.4880, allows attackers to execute arbitrary code     or cause a denial of service (memory corruption) via     unspecified vectors, a different vulnerability than     CVE-2011-2451, CVE-2011-2452, CVE-2011-2453,     CVE-2011-2454, CVE-2011-2455, CVE-2011-2459, and     CVE-2011-2460. (CVE-2011-2445)

  - Adobe Flash Player before 10.3.183.11 and 11.x before     11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and     before 11.1.102.59 on Android, and Adobe AIR before     3.1.0.4880, allows attackers to execute arbitrary code     or cause a denial of service (heap memory corruption)     via unspecified vectors. (CVE-2011-2450)

  - Adobe Flash Player before 10.3.183.11 and 11.x before     11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and     before 11.1.102.59 on Android, and Adobe AIR before     3.1.0.4880, allows attackers to execute arbitrary code     or cause a denial of service (memory corruption) via     unspecified vectors, a different vulnerability than     CVE-2011-2445, CVE-2011-2452, CVE-2011-2453,     CVE-2011-2454, CVE-2011-2455, CVE-2011-2459, and     CVE-2011-2460. (CVE-2011-2451)

  - Adobe Flash Player before 10.3.183.11 and 11.x before     11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and     before 11.1.102.59 on Android, and Adobe AIR before     3.1.0.4880, allows attackers to execute arbitrary code     or cause a denial of service (memory corruption) via     unspecified vectors, a different vulnerability than     CVE-2011-2445, CVE-2011-2451, CVE-2011-2453,     CVE-2011-2454, CVE-2011-2455, CVE-2011-2459, and     CVE-2011-2460. (CVE-2011-2452)

  - Adobe Flash Player before 10.3.183.11 and 11.x before     11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and     before 11.1.102.59 on Android, and Adobe AIR before     3.1.0.4880, allows attackers to execute arbitrary code     or cause a denial of service (memory corruption) via     unspecified vectors, a different vulnerability than     CVE-2011-2445, CVE-2011-2451, CVE-2011-2452,     CVE-2011-2454, CVE-2011-2455, CVE-2011-2459, and     CVE-2011-2460. (CVE-2011-2453)

  - Adobe Flash Player before 10.3.183.11 and 11.x before     11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and     before 11.1.102.59 on Android, and Adobe AIR before     3.1.0.4880, allows attackers to execute arbitrary code     or cause a denial of service (memory corruption) via     unspecified vectors, a different vulnerability than     CVE-2011-2445, CVE-2011-2451, CVE-2011-2452,     CVE-2011-2453, CVE-2011-2455, CVE-2011-2459, and     CVE-2011-2460. (CVE-2011-2454)

  - Adobe Flash Player before 10.3.183.11 and 11.x before     11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and     before 11.1.102.59 on Android, and Adobe AIR before     3.1.0.4880, allows attackers to execute arbitrary code     or cause a denial of service (memory corruption) via     unspecified vectors, a different vulnerability than     CVE-2011-2445, CVE-2011-2451, CVE-2011-2452,     CVE-2011-2453, CVE-2011-2454, CVE-2011-2459, and     CVE-2011-2460. (CVE-2011-2455)

  - Buffer overflow in Adobe Flash Player before 10.3.183.11     and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux,     and Solaris and before 11.1.102.59 on Android, and Adobe     AIR before 3.1.0.4880, allows attackers to execute     arbitrary code via unspecified vectors. (CVE-2011-2456)

  - Stack-based buffer overflow in Adobe Flash Player before     10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac     OS X, Linux, and Solaris and before 11.1.102.59 on     Android, and Adobe AIR before 3.1.0.4880, allows     attackers to execute arbitrary code via unspecified     vectors. (CVE-2011-2457)

  - Adobe Flash Player before 10.3.183.11 and 11.x before     11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and     before 11.1.102.59 on Android, and Adobe AIR before     3.1.0.4880, when Internet Explorer is used, allows     remote attackers to bypass the cross-domain policy via a     crafted web site. (CVE-2011-2458)

  - Adobe Flash Player before 10.3.183.11 and 11.x before     11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and     before 11.1.102.59 on Android, and Adobe AIR before     3.1.0.4880, allows attackers to execute arbitrary code     or cause a denial of service (memory corruption) via     unspecified vectors, a different vulnerability than     CVE-2011-2445, CVE-2011-2451, CVE-2011-2452,     CVE-2011-2453, CVE-2011-2454, CVE-2011-2455, and     CVE-2011-2460. (CVE-2011-2459)

  - Adobe Flash Player before 10.3.183.11 and 11.x before     11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and     before 11.1.102.59 on Android, and Adobe AIR before     3.1.0.4880, allows attackers to execute arbitrary code     or cause a denial of service (memory corruption) via     unspecified vectors, a different vulnerability than     CVE-2011-2445, CVE-2011-2451, CVE-2011-2452,     CVE-2011-2453, CVE-2011-2454, CVE-2011-2455, and     CVE-2011-2459. (CVE-2011-2460)

flash-player update to version 11.1.102.55 to fix the following critical security issues :

CVE-2011-2445, CVE-2011-2450, CVE-2011-2451, CVE-2011-2452, CVE-2011-2453, CVE-2011-2454, CVE-2011-2455, CVE-2011-2456, CVE-2011-2457, CVE-2011-2458, CVE-2011-2459, CVE-2011-2460

This update provides flash-player 11.1.102.55, which files the following critical security issues :

  - This update resolves a memory corruption vulnerability     that could lead to code execution (CVE-2011-2445).

  - This update resolves a heap corruption vulnerability     that could lead to code execution (CVE-2011-2450).

  - This update resolves a memory corruption vulnerability     that could lead to code execution (CVE-2011-2451).

  - This update resolves a memory corruption vulnerability     that could lead to code execution (CVE-2011-2452).

  - This update resolves a memory corruption vulnerability     that could lead to code execution (CVE-2011-2453).

  - This update resolves a memory corruption vulnerability     that could lead to code execution (CVE-2011-2454).

  - This update resolves a memory corruption vulnerability     that could lead to code execution (CVE-2011-2455).

  - This update resolves a buffer overflow vulnerability     that could lead to code execution (CVE-2011-2456).

  - This update resolves a stack overflow vulnerability that     could lead to code execution (CVE-2011-2457).

  - This update resolves a vulnerability that could lead to     a cross-domain policy bypass (Internet Explorer-only)     (CVE-2011-2458).

  - This update resolves a memory corruption vulnerability     that could lead to code execution (CVE-2011-2459).

  - This update resolves a memory corruption vulnerability     that could lead to code execution (CVE-2011-2460).

The remote host is affected by the vulnerability described in GLSA-201204-07 (Adobe Flash Player: Multiple vulnerabilities)

    Multiple vulnerabilities have been discovered in Adobe Flash Player.
      Please review the CVE identifiers referenced below for details.
  Impact :

    A remote attacker could entice a user to open a specially crafted SWF       file, possibly resulting in execution of arbitrary code with the       privileges of the process or a Denial of Service condition. Furthermore,       a remote attacker may be able to bypass intended access restrictions,       bypass cross-domain policy, inject arbitrary web script, or obtain       sensitive information.
  Workaround :

    There is no known workaround at this time.

The version of HP Systems Insight Manager installed on the remote Windows host is affected by vulnerabilities in the following components :

  - TLS and SSL protocols
  - Apache Tomcat
  - Java
  - Flash Player
  - BlazeDS/GraniteDS
  - Adobe LiveCycle
  - Adobe Flex SDK
  - Systems Insight Manager

flash-player update to version 11.1.102.55 to fix the following critical

flash-player update to version 11.1.102.55 to fix the following critical security issues :

CVE-2011-2445 / CVE-2011-2450 / CVE-2011-2451 / CVE-2011-2452 / CVE-2011-2453 / CVE-2011-2454 / CVE-2011-2455 / CVE-2011-2456 / CVE-2011-2457 / CVE-2011-2458 / CVE-2011-2459 / CVE-2011-2460

The version of Adobe Reader installed on the remote Mac OS X host is prior or equal to 10.1.1 or 9.4.6. It is, therefore, affected by a memory corruption issue related to the Universal 3D (U3D) file format.
A remote attacker can exploit this, by convincing a user to view a maliciously crafted PDF file, to cause an application crash or to execute arbitrary code.

Note that the Adobe Reader X user-specific option to use 'Protected Mode' prevents an exploit of this kind from being executed, but Nessus cannot test for this configuration option.

According to its version, the instance of Adobe AIR installed on the remote Windows host is 3.0 or earlier and is reportedly affected by several critical vulnerabilities :

  - Several unspecified memory corruption errors     exist that could lead to code execution.
    (CVE-2011-2445, CVE-2011-2451, CVE-2011-2452,     CVE-2011-2453, CVE-2011-2454, CVE-2011-2455,     CVE-2011-2459, CVE-2011-2460)

  - An unspecified heap corruption error exists that could     lead to code execution. (CVE-2011-2450)

  - An unspecified buffer overflow error exists that could     lead to code execution. (CVE-2011-2456)

  - An unspecified stack overflow error exists that could     lead to code execution. (CVE-2011-2457)

  - An unspecified error related to Internet Explorer can     allow cross-domain policy violations. (CVE-2011-2458)

By tricking a user on the affected system into opening a specially crafted document with Flash content, an attacker could leverage these vulnerabilities to execute arbitrary code remotely on the system subject to the user's privileges.

Versions of Flash Player earlier than 10.3.183.11 / 11.1.102.55 are potentially affected by multiple vulnerabilities :

  - Several unspecified memory corruption errors exist that could lead to code execution. (CVE-2011-2445, CVE-2011-2451, CVE-2011-2452, CVE-2011-2453, CVE-2011-2454, CVE-2011-2455, CVE-2011-2459, CVE-2011-2460)
  - An unspecified heap corruption error exists that could lead to code execution. (CVE-2011-2450)
  - An unspecified buffer overflow error exists that could lead to code execution. (CVE-2011-2456)
  - An unspecified stack overflow error exists that could lead to code execution. (CVE-2011-2457)
  - An unspecified error related to Internet Explorer can allow cross-domain policy violations. (CVE-2011-2458)

According to its version, the instance of Flash Player installed on the remote Windows host is 10.x equal to or earlier than 10.3.183.10 or 11.x equal to or earlier than 11.0.1.152.  It is, therefore, reportedly affected by several critical vulnerabilities :

  - Several unspecified memory corruption errors     exist that could lead to code execution.     (CVE-2011-2445, CVE-2011-2451, CVE-2011-2452,     CVE-2011-2453, CVE-2011-2454, CVE-2011-2455,     CVE-2011-2459, CVE-2011-2460)

  - An unspecified heap corruption error exists that could     lead to code execution. (CVE-2011-2450)

  - An unspecified buffer overflow error exists that could     lead to code execution. (CVE-2011-2456)

  - An unspecified stack overflow error exists that could     lead to code execution. (CVE-2011-2457)

  - An unspecified error related to Internet Explorer can     allow cross-domain policy violations. (CVE-2011-2458)

Adobe Product Security Incident Response Team reports :

Critical vulnerabilities have been identified in Adobe Flash Player 11.0.1.152 and earlier versions for Windows, Macintosh, Linux and Solaris, and Adobe Flash Player 11.0.1.153 and earlier versions for Android.

In addition a patch was released for users of flash10.

ID	Name	Product	Family	Severity
80611	Oracle Solaris Third-Party Patch Update : flash (multiple_vulnerabilities_in_adobe_flashplayer4)	Nessus	Solaris Local Security Checks	critical
75840	openSUSE Security Update : flash-player (openSUSE-SU-2011:1240-2)	Nessus	SuSE Local Security Checks	critical
75839	openSUSE Security Update : flash-player (openSUSE-SU-2011:1240-1)	Nessus	SuSE Local Security Checks	critical
75502	openSUSE Security Update : flash-player (openSUSE-SU-2011:1240-1)	Nessus	SuSE Local Security Checks	critical
74525	openSUSE Security Update : flash-player (openSUSE-2011-4)	Nessus	SuSE Local Security Checks	critical
59623	GLSA-201204-07 : Adobe Flash Player: Multiple vulnerabilities	Nessus	Gentoo Local Security Checks	critical
59684	HP Systems Insight Manager < 7.0 Multiple Vulnerabilities	Nessus	Windows	critical
57195	SuSE 10 Security Update : flash-player (ZYPP Patch Number 7832)	Nessus	SuSE Local Security Checks	critical
57102	SuSE 11.1 Security Update : flash-player (SAT Patch Number 5413)	Nessus	SuSE Local Security Checks	critical
57044	Adobe Reader <= 10.1.1 / 9.4.6 U3D Memory Corruption (APSA11-04, APSB11-28, APSB11-30, APSB12-01) (Mac OS X)	Nessus	MacOS X Local Security Checks	high
56959	Adobe AIR <= 3.0 Multiple Vulnerabilities (APSB11-28)	Nessus	Windows	critical
6097	Flash Player < 10.3.183.11 / 11.1.102.55 Multiple Vulnerabilities (APSB11-28)	Nessus Network Monitor	Web Clients	high
56874	Flash Player <= 10.3.183.10 / 11.0.1.152 Multiple Vulnerabilities (APSB11-28)	Nessus	Windows	high
56803	FreeBSD : linux-flashplugin -- multiple vulnerabilities (0e8e1212-0ce5-11e1-849b-003067b2972c)	Nessus	FreeBSD Local Security Checks	critical

CVE-2011-2458

high

New! CVE Severity Now Using CVSS v3

Description

References

Details

Risk Information

CVSS v2

Vulnerable Software

Configuration 1

Configuration 2

Configuration 3

Tenable Plugins

critical

critical

critical

critical

critical

critical

critical

critical

critical

high

critical

high

high

critical