|Date of publication:||09/01/2013|
|The presence of corrections:||Yes|
|Number of vulnerabilities:||1|
|CVSSv2 rating:||(AV: N / AC: M / Au: N / C: C / I: C / A: C / E: U / RL: O / RC: C) = Base: 9.3/Temporal: 6.9|
|CWE ID:||No data|
|Be exploited||No data|
|Affected products:||Adobe AIR 3.x
Adobe Flash Player 10.x
Adobe Flash Player 11.x
Adobe Flash Player 11.5.502.135 for Windows, possibly other versions.
Adobe Flash Player 11.5.502.136 for Mac, maybe other versions.
Adobe Flash Player 18.104.22.1688 for Linux, maybe other versions.
Adobe Flash Player 22.214.171.124 for Android 4.x, possibly other versions.
Adobe Flash Player 126.96.36.199 for Android 3.x and 2.x, possibly other versions.
Adobe AIR 188.8.131.520 for Windows, possibly other versions.
Adobe AIR 184.108.40.2060 for Macintosh, maybe others version.
Adobe AIR 220.127.116.110 for Android, maybe other versions.
18.104.22.1680 Adobe AIR SDK, maybe other versions.
22.214.171.1240 Adobe AIR SDK, perhaps the only one.
The vulnerability allows a remote user to execute arbitrary code on the target system.
The vulnerability is caused due to an unspecified error. This can be exploited to cause a buffer overflow and potentially execute arbitrary code.
Manufacturer URL: http://www.adobe.com/products/flashplayer.html
Solution: Install the latest version from the manufacturer.