CVE-2013-1379

Name of the Vulnerable Software and Affected Versions Adobe Flash Player versions prior to 10.3.183.75 and 11.x prior to 11.7.700.169 on Windows and Mac OS X Adobe Flash Player versions prior to 10.3.183.75 and 11.x prior to 11.2.202.280 on Linux Adobe Flash Player versions prior to 11.1.111.50 on Android 2.x and 3.x Adobe Flash Player versions prior to 11.1.115.54 on Android 4.x Adobe AIR versions prior to 3.7.0.1530 Adobe AIR SDK & Compiler versions prior to 3.7.0.1530

Description The issue exists due to the improper initialization of pointer arrays in Adobe Flash Player, Adobe AIR, and Adobe AIR SDK & Compiler. This allows attackers to execute arbitrary code or cause a denial of service via unspecified vectors, resulting in memory corruption.

Recommendations For Adobe Flash Player versions prior to 10.3.183.75 and 11.x prior to 11.7.700.169 on Windows and Mac OS X, update to version 10.3.183.75 or 11.7.700.169 or later. For Adobe Flash Player versions prior to 10.3.183.75 and 11.x prior to 11.2.202.280 on Linux, update to version 10.3.183.75 or 11.2.202.280 or later. For Adobe Flash Player versions prior to 11.1.111.50 on Android 2.x and 3.x, update to version 11.1.111.50 or later. For Adobe Flash Player versions prior to 11.1.115.54 on Android 4.x, update to version 11.1.115.54 or later. For Adobe AIR versions prior to 3.7.0.1530, update to version 3.7.0.1530 or later. For Adobe AIR SDK & Compiler versions prior to 3.7.0.1530, update to version 3.7.0.1530 or later.