|Date of publication:||09/01/2013|
|The presence of corrections:||Yes|
|Number of vulnerabilities:||1|
|CVSSv2 rating:||(AV: N / AC: M / Au: N / C: C / I: C / A: C / E: U / RL: O / RC: C) = Base: 9.3/Temporal: 6.9|
|CWE ID:||No data|
|Be exploited||No data|
|Affected products:||Adobe AIR 3.x
Adobe Flash Player 10.x
Adobe Flash Player 11.x
Adobe Flash Player 11.5.502.135 for Windows, possibly other versions.
Adobe Flash Player 11.5.502.136 for Mac, maybe other versions.
Adobe Flash Player 184.108.40.2068 for Linux, maybe other versions.
Adobe Flash Player 220.127.116.11 for Android 4.x, possibly other versions.
Adobe Flash Player 18.104.22.168 for Android 3.x and 2.x, possibly other versions.
Adobe AIR 22.214.171.1240 for Windows, possibly other versions.
Adobe AIR 126.96.36.1990 for Macintosh, maybe others version.
Adobe AIR 188.8.131.520 for Android, maybe other versions.
184.108.40.2060 Adobe AIR SDK, maybe other versions.
220.127.116.110 Adobe AIR SDK, perhaps the only one.
The vulnerability allows a remote user to execute arbitrary code on the target system.
The vulnerability is caused due to an unspecified error. This can be exploited to cause a buffer overflow and potentially execute arbitrary code.
Manufacturer URL: http://www.adobe.com/products/flashplayer.html
Solution: Install the latest version from the manufacturer.