|Date of publication:||09/01/2013|
|The presence of corrections:||Yes|
|Number of vulnerabilities:||1|
|CVSSv2 rating:||(AV: N / AC: M / Au: N / C: C / I: C / A: C / E: U / RL: O / RC: C) = Base: 9.3/Temporal: 6.9|
|CWE ID:||No data|
|Be exploited||No data|
|Affected products:||Adobe AIR 3.x
Adobe Flash Player 10.x
Adobe Flash Player 11.x
Adobe Flash Player 11.5.502.135 for Windows, possibly other versions.
Adobe Flash Player 11.5.502.136 for Mac, maybe other versions.
Adobe Flash Player 188.8.131.528 for Linux, maybe other versions.
Adobe Flash Player 184.108.40.206 for Android 4.x, possibly other versions.
Adobe Flash Player 220.127.116.11 for Android 3.x and 2.x, possibly other versions.
Adobe AIR 18.104.22.1680 for Windows, possibly other versions.
Adobe AIR 22.214.171.1240 for Macintosh, maybe others version.
Adobe AIR 126.96.36.1990 for Android, maybe other versions.
188.8.131.520 Adobe AIR SDK, maybe other versions.
184.108.40.2060 Adobe AIR SDK, perhaps the only one.
The vulnerability allows a remote user to execute arbitrary code on the target system.
The vulnerability is caused due to an unspecified error. This can be exploited to cause a buffer overflow and potentially execute arbitrary code.
Manufacturer URL: http://www.adobe.com/products/flashplayer.html
Solution: Install the latest version from the manufacturer.