This repository has been archived by the owner on Jan 10, 2025. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 124
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
1 parent
7530c38
commit 0fcdd10
Showing
5 changed files
with
58 additions
and
0 deletions.
There are no files selected for viewing
44 changes: 44 additions & 0 deletions
44
repository/definitions/vulnerability/oval_com.gfi_def_1549.xml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,44 @@ | ||
| <definition xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5" id="oval:com.gfi:def:1549" version="0" class="vulnerability"> | ||
| <metadata> | ||
| <title>Multiple vulnerabilities on Adobe Animate 2022, Adobe Animate 2023</title> | ||
| <affected family="windows"> | ||
| <platform>Microsoft Windows 10</platform> | ||
| <platform>Microsoft Windows 11</platform> | ||
| <platform>Microsoft Windows Server 2008</platform> | ||
| <platform>Microsoft Windows Server 2008 R2</platform> | ||
| <platform>Microsoft Windows Server 2012</platform> | ||
| <platform>Microsoft Windows Server 2012 R2</platform> | ||
| <platform>Microsoft Windows Server 2016</platform> | ||
| <platform>Microsoft Windows Server 2019</platform> | ||
| <product>Adobe Animate</product> | ||
| </affected> | ||
| <reference ref_id="ASPB23-15" ref_url="https://helpx.adobe.com/security/products/animate/apsb23-15.html" source="Vendor Advisory"/> | ||
| <reference ref_id="CVE-2023-22236" ref_url="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-22236" source="CVE"/> | ||
| <reference ref_id="CVE-2023-22243" ref_url="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-22243" source="CVE"/> | ||
| <reference ref_id="CVE-2023-22246" ref_url="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-22246" source="CVE"/> | ||
| <description> | ||
| Adobe Animate versions 22.0.8 (and earlier) and 23.0.0 (and earlier) are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. (CVE-2023-22236) | ||
| Adobe Animate versions 22.0.8 (and earlier) and 23.0.0 (and earlier) are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. (CVE-2023-22243) | ||
| Adobe Animate versions 22.0.8 (and earlier) and 23.0.0 (and earlier) are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. (CVE-2023-22246) | ||
| </description> | ||
| <oval_repository> | ||
| <dates> | ||
| <submitted date="2023-03-02T01:45:00+00:00"> | ||
| <contributor organization="GFI">Glenn Lugod</contributor> | ||
| </submitted> | ||
| </dates> | ||
| <status>INITIAL SUBMISSION</status> | ||
| <min_schema_version>5.10</min_schema_version> | ||
| </oval_repository> | ||
| </metadata> | ||
| <criteria comment="Check for installation of vulnerable Adobe Animate + vulnerable file version" operator="OR"> | ||
| <criteria comment="Adobe Animate is installed + version" operator="AND"> | ||
| <extend_definition comment="Adobe Animate is installed" definition_ref="oval:org.cisecurity:def:8775"/> | ||
| <criterion comment="Check if Adobe Animate version is less than 22.0.9" test_ref="oval:com.gfi:tst:1550"/> | ||
| </criteria> | ||
| <criteria comment="Adobe Animate is installed + version" operator="AND"> | ||
| <extend_definition comment="Adobe Animate is installed" definition_ref="oval:org.cisecurity:def:8775"/> | ||
| <criterion comment="Check if Adobe Animate version is less than 23.0.1" test_ref="oval:com.gfi:tst:1552"/> | ||
| </criteria> | ||
| </criteria> | ||
| </definition> |
3 changes: 3 additions & 0 deletions
3
repository/states/windows/registry_state/1000/oval_com.gfi_ste_1551.xml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,3 @@ | ||
| <registry_state xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows" comment="State matches version less than 22.0.9" id="oval:com.gfi:ste:1551" version="0"> | ||
| <value datatype="version" operation="less than">22.0.9</value> | ||
| </registry_state> |
3 changes: 3 additions & 0 deletions
3
repository/states/windows/registry_state/1000/oval_com.gfi_ste_1553.xml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,3 @@ | ||
| <registry_state xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows" comment="State matches version less than 23.0.1" id="oval:com.gfi:ste:1553" version="0"> | ||
| <value datatype="version" operation="less than">23.0.1</value> | ||
| </registry_state> |
4 changes: 4 additions & 0 deletions
4
repository/tests/windows/registry_test/1000/oval_com.gfi_tst_1550.xml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,4 @@ | ||
| <registry_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows" check="at least one" check_existence="at_least_one_exists" comment="Check if Adobe Animate version is less than 22.0.9" id="oval:com.gfi:tst:1550" version="0"> | ||
| <object object_ref="oval:org.cisecurity:obj:4764"/> | ||
| <state state_ref="oval:com.gfi:ste:1551"/> | ||
| </registry_test> |
4 changes: 4 additions & 0 deletions
4
repository/tests/windows/registry_test/1000/oval_com.gfi_tst_1552.xml
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,4 @@ | ||
| <registry_test xmlns="http://oval.mitre.org/XMLSchema/oval-definitions-5#windows" check="at least one" check_existence="at_least_one_exists" comment="Check if Adobe Animate version is less than 23.0.1" id="oval:com.gfi:tst:1552" version="0"> | ||
| <object object_ref="oval:org.cisecurity:obj:4764"/> | ||
| <state state_ref="oval:com.gfi:ste:1553"/> | ||
| </registry_test> |