CVE-2013-0648
8.8
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Exploitability: 2.8 / Impact: 5.9
Source: NVD
Description
Unspecified vulnerability in the ExternalInterface ActionScript functionality in Adobe Flash Player before 10.3.183.67 and 11.x before 11.6.602.171 on Windows and Mac OS X, and before 10.3.183.67 and 11.x before 11.2.202.273 on Linux, allows remote attackers to execute arbitrary code via crafted SWF content, as exploited in the wild in February 2013.
Affected (14)
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before 10.3.183.67 |
| Running on/with | Platform Versions |
|---|---|
Apple Mac Os X | All versions |
Microsoft Windows | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| From 11.0 to 11.2.202.273 |
| Running on/with | Platform Versions |
|---|---|
Linux Linux Kernel | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Version 11.4 | |
| Version 10 sp4 |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Version 6.0 | |
| Version 5.9 | |
| Version 6.0 | |
| Version 5.9 | |
| Version 6.0 |
References (11)
Source: psirt@adobe.com
Mailing List
Source: psirt@adobe.com
Mailing List
Source: psirt@adobe.com
Mailing List
Source: psirt@adobe.com
Broken LinkPatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing List
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing List
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing List
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkPatchVendor Advisory
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0
US Government Resource
Timeline
No history available yet.