FreeBSD Local Security Checks : FreeBSD Ports: linux-f10-flashplugin

Price/Feature Summary | Order | New Vulnerabilities | Confidentiality | Vulnerability Search

Vulnerability Search		Search 61204 CVE descriptions and 32582 test descriptions, access 10,000+ cross references.
	Tests CVE All

Test ID: 1.3.6.1.4.1.25623.1.0.71165

Category: FreeBSD Local Security Checks

Title: FreeBSD Ports: linux-f10-flashplugin

Summary: FreeBSD Ports: linux-f10-flashplugin

Description: The remote host is missing an update to the system
as announced in the referenced advisory.

The following package is affected: linux-f10-flashplugin

CVE-2012-0751
The ActiveX control in Adobe Flash Player before 10.3.183.15 and 11.x
before 11.1.102.62 on Windows allows attackers to execute arbitrary
code or cause a denial of service (memory corruption) via unspecified
vectors.

CVE-2012-0752
Adobe Flash Player before 10.3.183.15 and 11.x before 11.1.102.62 on
Windows, Mac OS X, Linux, and Solaris
before 11.1.111.6 on Android
2.x and 3.x
and before 11.1.115.6 on Android 4.x allows attackers to
execute arbitrary code or cause a denial of service (memory
corruption) via leveraging an unspecified 'type confusion.'

CVE-2012-0753
Adobe Flash Player before 10.3.183.15 and 11.x before 11.1.102.62 on
Windows, Mac OS X, Linux, and Solaris
before 11.1.111.6 on Android
2.x and 3.x
and before 11.1.115.6 on Android 4.x allows attackers to
execute arbitrary code or cause a denial of service (memory
corruption) via crafted MP4 data.

CVE-2012-0754
Adobe Flash Player before 10.3.183.15 and 11.x before 11.1.102.62 on
Windows, Mac OS X, Linux, and Solaris
before 11.1.111.6 on Android
2.x and 3.x
and before 11.1.115.6 on Android 4.x allows attackers to
execute arbitrary code or cause a denial of service (memory
corruption) via unspecified vectors.

CVE-2012-0755
Adobe Flash Player before 10.3.183.15 and 11.x before 11.1.102.62 on
Windows, Mac OS X, Linux, and Solaris
before 11.1.111.6 on Android
2.x and 3.x
and before 11.1.115.6 on Android 4.x allows attackers to
bypass intended access restrictions via unspecified vectors, a
different vulnerability than CVE-2012-0756.

CVE-2012-0756
Adobe Flash Player before 10.3.183.15 and 11.x before 11.1.102.62 on
Windows, Mac OS X, Linux, and Solaris
before 11.1.111.6 on Android
2.x and 3.x
and before 11.1.115.6 on Android 4.x allows attackers to
bypass intended access restrictions via unspecified vectors, a
different vulnerability than CVE-2012-0755.

CVE-2012-0767
Cross-site scripting (XSS) vulnerability in Adobe Flash Player before
10.3.183.15 and 11.x before 11.1.102.62 on Windows, Mac OS X, Linux,
and Solaris
before 11.1.111.6 on Android 2.x and 3.x
and before
11.1.115.6 on Android 4.x allows remote attackers to inject arbitrary
web script or HTML via unspecified vectors, aka 'Universal XSS
(UXSS),' as exploited in the wild in February 2012.

Solution:
Update your system with the appropriate patches or
software upgrades.

https://www.adobe.com/support/security/bulletins/apsb12-03.html
http://www.vuxml.org/freebsd/f63bf080-619d-11e1-91af-003067b2972c.html

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2012-0751
SuSE Security Announcement: openSUSE-SU-2012:0265 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00014.html
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:14985
Common Vulnerability Exposure (CVE) ID: CVE-2012-0752
http://security.gentoo.org/glsa/glsa-201204-07.xml
RedHat Security Advisories: RHSA-2012:0144
http://rhn.redhat.com/errata/RHSA-2012-0144.html
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:14654
http://secunia.com/advisories/48819
Common Vulnerability Exposure (CVE) ID: CVE-2012-0753
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:14795
Common Vulnerability Exposure (CVE) ID: CVE-2012-0754
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:15030
Common Vulnerability Exposure (CVE) ID: CVE-2012-0755
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:14731
Common Vulnerability Exposure (CVE) ID: CVE-2012-0756
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:14881
Common Vulnerability Exposure (CVE) ID: CVE-2012-0767
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:14806

Copyright Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com

This is only one of 32582 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

New User Registration
Email:

UserID:

Passwd:

Please email me your monthly newsletters, informing the latest services, improvements & surveys.

Please email me a vulnerability test announcement whenever a new test is added.

Privacy

Registered User Login

UserID:

Passwd:

Forgot userid or passwd?

Email/Userid:

Test ID:	1.3.6.1.4.1.25623.1.0.71165
Category:	FreeBSD Local Security Checks
Title:	FreeBSD Ports: linux-f10-flashplugin
Summary:	FreeBSD Ports: linux-f10-flashplugin
Description:	The remote host is missing an update to the system as announced in the referenced advisory. The following package is affected: linux-f10-flashplugin CVE-2012-0751 The ActiveX control in Adobe Flash Player before 10.3.183.15 and 11.x before 11.1.102.62 on Windows allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors. CVE-2012-0752 Adobe Flash Player before 10.3.183.15 and 11.x before 11.1.102.62 on Windows, Mac OS X, Linux, and Solaris before 11.1.111.6 on Android 2.x and 3.x and before 11.1.115.6 on Android 4.x allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via leveraging an unspecified 'type confusion.' CVE-2012-0753 Adobe Flash Player before 10.3.183.15 and 11.x before 11.1.102.62 on Windows, Mac OS X, Linux, and Solaris before 11.1.111.6 on Android 2.x and 3.x and before 11.1.115.6 on Android 4.x allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted MP4 data. CVE-2012-0754 Adobe Flash Player before 10.3.183.15 and 11.x before 11.1.102.62 on Windows, Mac OS X, Linux, and Solaris before 11.1.111.6 on Android 2.x and 3.x and before 11.1.115.6 on Android 4.x allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors. CVE-2012-0755 Adobe Flash Player before 10.3.183.15 and 11.x before 11.1.102.62 on Windows, Mac OS X, Linux, and Solaris before 11.1.111.6 on Android 2.x and 3.x and before 11.1.115.6 on Android 4.x allows attackers to bypass intended access restrictions via unspecified vectors, a different vulnerability than CVE-2012-0756. CVE-2012-0756 Adobe Flash Player before 10.3.183.15 and 11.x before 11.1.102.62 on Windows, Mac OS X, Linux, and Solaris before 11.1.111.6 on Android 2.x and 3.x and before 11.1.115.6 on Android 4.x allows attackers to bypass intended access restrictions via unspecified vectors, a different vulnerability than CVE-2012-0755. CVE-2012-0767 Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 10.3.183.15 and 11.x before 11.1.102.62 on Windows, Mac OS X, Linux, and Solaris before 11.1.111.6 on Android 2.x and 3.x and before 11.1.115.6 on Android 4.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka 'Universal XSS (UXSS),' as exploited in the wild in February 2012. Solution: Update your system with the appropriate patches or software upgrades. https://www.adobe.com/support/security/bulletins/apsb12-03.html http://www.vuxml.org/freebsd/f63bf080-619d-11e1-91af-003067b2972c.html
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2012-0751 SuSE Security Announcement: openSUSE-SU-2012:0265 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00014.html http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:14985 Common Vulnerability Exposure (CVE) ID: CVE-2012-0752 http://security.gentoo.org/glsa/glsa-201204-07.xml RedHat Security Advisories: RHSA-2012:0144 http://rhn.redhat.com/errata/RHSA-2012-0144.html http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:14654 http://secunia.com/advisories/48819 Common Vulnerability Exposure (CVE) ID: CVE-2012-0753 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:14795 Common Vulnerability Exposure (CVE) ID: CVE-2012-0754 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:15030 Common Vulnerability Exposure (CVE) ID: CVE-2012-0755 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:14731 Common Vulnerability Exposure (CVE) ID: CVE-2012-0756 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:14881 Common Vulnerability Exposure (CVE) ID: CVE-2012-0767 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:14806
Copyright	Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com