5.1 - RHSA-2006:0674

Executive Summary

Summary
Title	flash-plugin security update

Informations
Name	RHSA-2006:0674	First vendor Publication	2006-09-12
Vendor	RedHat	Last vendor Modification	2006-09-12
Severity (Vendor)	Critical	Revision	01

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:H/Au:N/C:P/I:P/A:P)
Cvss Base Score	5.1	Attack Range	Network
Cvss Impact Score	6.4	Attack Complexity	High
Cvss Expoit Score	4.9	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Problem Description:

An updated Adobe Flash Player package that fixes security issues is now available.

This update has been rated as having critical security impact by the Red Hat Security Response Team.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AS version 3 Extras - i386 Red Hat Desktop version 3 Extras - i386 Red Hat Enterprise Linux ES version 3 Extras - i386 Red Hat Enterprise Linux WS version 3 Extras - i386 Red Hat Enterprise Linux AS version 4 Extras - i386 Red Hat Desktop version 4 Extras - i386 Red Hat Enterprise Linux ES version 4 Extras - i386 Red Hat Enterprise Linux WS version 4 Extras - i386

3. Problem description:

The flash-plugin package contains a Firefox-compatible Adobe Flash Player browser plug-in.

Security issues were discovered in the Adobe Flash Player. It may be possible to execute arbitrary code on a victim's machine if the victim opens a malicious Adobe Flash file. (CVE-2006-3311, CVE-2006-3587, CVE-2006-3588)

Users of Adobe Flash Player should upgrade to this updated package, which contains version 7.0.68 and is not vulnerable to this issue.

Red Hat would like to thank Adobe for notifying us of these issues.

4. Solution:

Before applying this update, make sure all previously released errata relevant to your system have been applied.

To update all RPMs for your particular architecture, run:

rpm -Fvh [filenames]

where [filenames] is a list of the RPMs you wish to upgrade. Only those RPMs which are currently installed will be updated. Those RPMs which are not installed but included in the list will not be updated. Note that you can also use wildcards (*.rpm) if your current directory *only* contains the desired RPMs.

Please note that this update is also available via Red Hat Network. Many people find this an easier way to apply updates. To use Red Hat Network, launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate RPMs being upgraded on your system.

5. Bug IDs fixed (http://bugzilla.redhat.com/):

205983 - CVE-2006-3311 Multiple flash-plug flaws (CVE-2006-3587 CVE-2006-3588)

Original Source

Url : https://rhn.redhat.com/errata/RHSA-2006-0674.html

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:1050

Oval ID:	oval:org.mitre.oval:def:1050
Title:	Flash Arbitrary Code Execution Vulnerability
Description:	Unspecified vulnerability in Adobe (Macromedia) Flash Player 8.0.24.0 allows remote attackers to execute arbitrary commands via a malformed .swf file that results in "multiple improper memory access" errors.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2006-3587	Version:	4
Platform(s):	Microsoft Windows XP	Product(s):	Flash Player
Definition Synopsis:
WinXP SP2,SP3 or WinXP SP1 (64-bit) Microsoft Windows XP (x86) SP2 is installed AND Microsoft Windows XP (x86) SP3 is installed AND Microsoft Windows XP SP1 (64-bit) is installed AND Flash.ocx exists without upgrades to Flash8 or Flash9 Flash.ocx exists AND NOT the version of Flash8.ocx is greater than or equal 8.0.22.0 AND NOT the version of Flash9.ocx is greater than or equal 9.0.16.0

Definition Id: oval:org.mitre.oval:def:394

Oval ID:	oval:org.mitre.oval:def:394
Title:	SWF Movie Arbitrary Code Execution Vulnerability
Description:	Buffer overflow in Adobe Flash Player 8.0.24.0 and earlier, Flash Professional 8, Flash MX 2004, and Flex 1.5 allows user-assisted remote attackers to execute arbitrary code via a long, dynamically created string in a SWF movie.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2006-3311	Version:	4
Platform(s):	Microsoft Windows XP	Product(s):	Flash Player
Definition Synopsis:
WinXP SP2,SP3 or WinXP SP1 (64-bit) Microsoft Windows XP (x86) SP2 is installed AND Microsoft Windows XP (x86) SP3 is installed AND Microsoft Windows XP SP1 (64-bit) is installed AND Flash.ocx exists without upgrades to Flash8 or Flash9 Flash.ocx exists AND NOT the version of Flash8.ocx is greater than or equal 8.0.22.0 AND NOT the version of Flash9.ocx is greater than or equal 9.0.16.0

Definition Id: oval:org.mitre.oval:def:432

Oval ID:	oval:org.mitre.oval:def:432
Title:	Malformed, Compressed .swf File Arbitrary Code Execution Vulnerability
Description:	Unspecified vulnerability in Adobe (Macromedia) Flash Player 8.0.24.0 allows remote attackers to cause a denial of service (browser crash) via a malformed, compressed .swf file, a different issue than CVE-2006-3587.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2006-3588	Version:	4
Platform(s):	Microsoft Windows XP	Product(s):	Flash Player
Definition Synopsis:
WinXP SP2,SP3 or WinXP SP1 (64-bit) Microsoft Windows XP (x86) SP2 is installed AND Microsoft Windows XP (x86) SP3 is installed AND Microsoft Windows XP SP1 (64-bit) is installed AND Flash.ocx exists without upgrades to Flash8 or Flash9 Flash.ocx exists AND NOT the version of Flash8.ocx is greater than or equal 8.0.22.0 AND NOT the version of Flash9.ocx is greater than or equal 9.0.16.0

CPE : Common Platform Enumeration

Type	Description	Count
Application	Adobe Flash Player cpe:2.3:a:adobe:flash_player:8.0.24.0:::::::* cpe:2.3:a:adobe:flash_player:8.0.22.0:::::::* cpe:2.3:a:adobe:flash_player:8.0::basic::::: cpe:2.3:a:adobe:flash_player:8.0::pro::::: cpe:2.3:a:adobe:flash_player:8.0:::::::* cpe:2.3:a:adobe:flash_player:8::professional::::: cpe:2.3:a:adobe:flash_player:8::pro::::: cpe:2.3:a:adobe:flash_player:7.2:::::::* cpe:2.3:a:adobe:flash_player:7.1.1:::::::* cpe:2.3:a:adobe:flash_player:7.1:::::::* cpe:2.3:a:adobe:flash_player:7.0.73.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.70.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.69.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.68.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.67.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.66.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.63:::::::* cpe:2.3:a:adobe:flash_player:7.0.63::linux::::: cpe:2.3:a:adobe:flash_player:7.0.61.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.60.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.53.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.25:::::::* cpe:2.3:a:adobe:flash_player:7.0.24.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.19.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.14.0:::::::* cpe:2.3:a:adobe:flash_player:7.0.1:::::::* cpe:2.3:a:adobe:flash_player:7.0_r67::solaris::::: cpe:2.3:a:adobe:flash_player:7.0_r67:::::::* cpe:2.3:a:adobe:flash_player:7.0:::::::* cpe:2.3:a:adobe:flash_player:6.0.79:::::::* cpe:2.3:a:adobe:flash_player:6.0.21.0:::::::* cpe:2.3:a:adobe:flash_player:6:::::::* cpe:2.3:a:adobe:flash_player:5:::::::* cpe:2.3:a:adobe:flash_player:4:::::::* cpe:2.3:a:adobe:flash_player:3:::::::* cpe:2.3:a:adobe:flash_player:2:::::::* cpe:2.3:a:adobe:flash_player:mx_2004:::::::* cpe:2.3:a:adobe:flash_player:cs4::pro::::: cpe:2.3:a:adobe:flash_player:cs3::professional::::: cpe:2.3:a:adobe:flash_player:cs3::pro::::: cpe:2.3:a:adobe:flash_player:::pro:::::* cpe:2.3:a:adobe:flash_player:::basic:::::* cpe:2.3:a:adobe:flash_player:::::::: cpe:2.3:a:adobe:flash_player::::::edge::* cpe:2.3:a:adobe:flash_player::::::internet_explorer_11::* cpe:2.3:a:adobe:flash_player::::::chrome::* cpe:2.3:a:adobe:flash_player:-:::::::*	47
Application	Adobe Flex Sdk cpe:2.3:a:adobe:flex_sdk:1.5:::::::*	1

OpenVAS Exploits

Date	Description
2009-11-17	Name : Mac OS X Version File : nvt/macosx_version.nasl
2008-09-24	Name : Gentoo Security Advisory GLSA 200610-02 (Flash) File : nvt/glsa_200610_02.nasl
2008-09-04	Name : FreeBSD Ports: linux-flashplugin File : nvt/freebsd_linux-flashplugin0.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
28733	Adobe Flash Player Malformed SWF Processing Unspecified DoS Adobe Flash Player contains a flaw that may allow a denial of service. The issue is triggered when a victim opens a malformed and compressed SWF file. This will result in the application hosting the flash player, typically a web browser, to crach.
28732	Adobe Flash Player SWF Processing Dynamically Created String Overflow
27113	Adobe Flash Player Unspecified Arbitrary Code Execution

Nessus® Vulnerability Scanner

Date	Description
2013-01-24	Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2006-0674.nasl - Type : ACT_GATHER_INFO
2007-12-13	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_flash-player-2065.nasl - Type : ACT_GATHER_INFO
2007-10-17	Name : The remote openSUSE host is missing a security update. File : suse_flash-player-2072.nasl - Type : ACT_GATHER_INFO
2007-02-18	Name : The remote host is missing a vendor-supplied security patch File : suse_SA_2006_053.nasl - Type : ACT_GATHER_INFO
2006-10-05	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200610-02.nasl - Type : ACT_GATHER_INFO
2006-09-29	Name : The remote host is missing a Mac OS X update which fixes a security issue. File : macosx_10_4_8.nasl - Type : ACT_GATHER_INFO
2006-09-29	Name : The remote host is missing a Mac OS X update which fixes a security issue. File : macosx_SecUpd2006-006.nasl - Type : ACT_GATHER_INFO
2006-09-14	Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_7c75d48c429b11dbafae000c6ec775d9.nasl - Type : ACT_GATHER_INFO
2006-07-17	Name : The remote Windows host contains a browser plugin that is affected by multipl... File : flash_player_9.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2014-02-17 11:50:14	Multiple Updates

Global Informations

Type	Count
Oval ID(s)	3
CPE ID(s)	48
osvdb(s)	3
Openvas Exploit(s)	3
Nessus® Exploit(s)	9

	Related
5.1	CVE-2006-3587
5.1	CVE-2006-3311
2.6	CVE-2006-3588
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 3 more Alert(s)

5.1 - RHSA-2006:0674

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

OVAL Definitions

CPE : Common Platform Enumeration

OpenVAS Exploits

Open Source Vulnerability Database (OSVDB)

Nessus® Vulnerability Scanner

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU