PT-2013-5490 · Adobe+3 · Flash Player+6

Published

2013-11-13

·

Updated

2018-12-13

·

CVE-2013-5330

CVSS v2.0

10

High

VectorAV:N/AC:L/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Adobe Flash Player versions prior to 11.7.700.252 Adobe Flash Player versions 11.8.x Adobe Flash Player versions prior to 11.9.900.152 Adobe Flash Player versions prior to 11.2.202.327 on Linux Adobe AIR versions prior to 3.9.0.1210 Adobe AIR SDK versions prior to 3.9.0.1210 Adobe AIR SDK & Compiler versions prior to 3.9.0.1210
Description The issue allows attackers to execute arbitrary code or cause a denial of service due to memory corruption via unspecified vectors.
Recommendations For Adobe Flash Player versions prior to 11.7.700.252, update to version 11.7.700.252 or later. For Adobe Flash Player versions 11.8.x, update to a version after 11.8.x. For Adobe Flash Player versions prior to 11.9.900.152, update to version 11.9.900.152 or later. For Adobe Flash Player versions prior to 11.2.202.327 on Linux, update to version 11.2.202.327 or later. For Adobe AIR versions prior to 3.9.0.1210, update to version 3.9.0.1210 or later. For Adobe AIR SDK versions prior to 3.9.0.1210, update to version 3.9.0.1210 or later. For Adobe AIR SDK & Compiler versions prior to 3.9.0.1210, update to version 3.9.0.1210 or later.

Fix

DoS

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

ALT-PU-2013-1137
CVE-2013-5330
MGASA-2013-0328
OPENSUSE-SU-2013_1717-1
OPENSUSE-SU-2013_1737-1
RHSA-2013:1518
RHSA-2013_1518
ZDI-13-275

Affected Products

Alt Linux
Air
Air Sdk
Air Sdk & Compiler
Flash Player
Red Hat
Suse