Detections
Analytics

Debian DSA-2435-1 : gnash - several vulnerabilities

medium Nessus Plugin ID 58392

Language:

Synopsis

The remote Debian host is missing a security-related update.

Description

Several vulnerabilities have been identified in Gnash, the GNU Flash player.

 - CVE-2012-1175 Tielei Wang from Georgia Tech Information Security Center discovered a vulnerability in GNU Gnash which is caused due to an integer overflow error and can be exploited to cause a heap-based buffer overflow by tricking a user into opening a specially crafted SWF file.

 - CVE-2011-4328 Alexander Kurtz discovered an unsafe management of HTTP cookies. Cookie files are stored under /tmp and have predictable names, and the vulnerability allows a local attacker to overwrite arbitrary files the users has write permissions for, and are also world-readable which may cause information leak.

 - CVE-2010-4337 Jakub Wilk discovered an unsafe management of temporary files during the build process. Files are stored under /tmp and have predictable names, and the vulnerability allows a local attacker to overwrite arbitrary files the users has write permissions for.

Solution

Upgrade the gnash packages.

For the stable distribution (squeeze), this problem has been fixed in version 0.8.8-5+squeeze1.

See Also

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=605419

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=649384

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=664023

https://security-tracker.debian.org/tracker/CVE-2012-1175

https://security-tracker.debian.org/tracker/CVE-2011-4328

https://security-tracker.debian.org/tracker/CVE-2010-4337

https://packages.debian.org/source/squeeze/gnash

https://www.debian.org/security/2012/dsa-2435

Plugin Details

Severity: Medium

ID: 58392

File Name: debian_DSA-2435.nasl

Version: 1.13

Type: local

Agent: unix

Published: 3/20/2012

Updated: 1/11/2021

Supported Sensors: Agentless Assessment, Frictionless Assessment Agent, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Medium

Base Score: 6.8

Temporal Score: 5

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: p-cpe:/a:debian:debian_linux:gnash, cpe:/o:debian:debian_linux:6.0

Required KB Items: Host/local_checks_enabled, Host/Debian/release, Host/Debian/dpkg-l

Exploit Ease: No known exploits are available

Patch Publication Date: 3/19/2012

Reference Information

CVE: CVE-2010-4337, CVE-2011-4328, CVE-2012-1175

BID: 45102, 50747, 52446

DSA: 2435