SuSE 11.2 Security Update : flash-player (SAT Patch Number 7338)

This script is Copyright (C) 2013 Tenable Network Security, Inc.


Synopsis :

The remote SuSE 11 host is missing one or more security updates.

Description :

This update for flash-player to version 11.2.202.270, tracked as
ABSP13-05
<ttp://www.adobe.com/support/security/bulletins/apsb13-05.html> ,
contains fixes for the following security issues :

- Several buffer overflow vulnerabilities that could lead
to code execution. (CVE-2013-0642 / CVE-2013-0645 /
CVE-2013-1365 / CVE-2013-1366 / CVE-2013-1367 /
CVE-2013-1368 / CVE-2013-1369 / CVE-2013-1370 /
CVE-2013-1372 / CVE-2013-1373)

- Use-after-free vulnerabilities that could lead to code
execution. ( CVE-2013-0644 / CVE-2013-0649 /
CVE-2013-1374)

- An integer overflow vulnerability that could lead to
code execution. (CVE-2013-0639)

- Two memory corruption vulnerabilities that could lead to
code execution. (CVE-2013-0638 / CVE-2013-0647)

- An information disclosure vulnerability. (CVE-2013-0637)

See also :

https://bugzilla.novell.com/show_bug.cgi?id=803485
http://support.novell.com/security/cve/CVE-2013-0637.html
http://support.novell.com/security/cve/CVE-2013-0638.html
http://support.novell.com/security/cve/CVE-2013-0639.html
http://support.novell.com/security/cve/CVE-2013-0642.html
http://support.novell.com/security/cve/CVE-2013-0644.html
http://support.novell.com/security/cve/CVE-2013-0645.html
http://support.novell.com/security/cve/CVE-2013-0647.html
http://support.novell.com/security/cve/CVE-2013-0649.html
http://support.novell.com/security/cve/CVE-2013-1365.html
http://support.novell.com/security/cve/CVE-2013-1366.html
http://support.novell.com/security/cve/CVE-2013-1367.html
http://support.novell.com/security/cve/CVE-2013-1368.html
http://support.novell.com/security/cve/CVE-2013-1369.html
http://support.novell.com/security/cve/CVE-2013-1370.html
http://support.novell.com/security/cve/CVE-2013-1372.html
http://support.novell.com/security/cve/CVE-2013-1373.html
http://support.novell.com/security/cve/CVE-2013-1374.html

Solution :

Apply SAT patch number 7338.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now