Adobe Flash Player / AIR Multiple Vulnerabilities
Last Update Date:
11 Apr 2013
Release Date:
10 Apr 2013
3579
Views
RISK: High Risk
TYPE: Clients - Audio & Video
Multiple vulnerabilities have been indentified in Adobe Flash Player and Adobe AIR, which can be exploited by malicious people to compromise a user's system.
- An integer overflow error can be exploited to execute arbitrary code.
- Some unspecified errors can be exploited to cause memory corruption and execute arbitrary code.
- An error when initializing certain pointer arrays can be exploited to cause memory corruption and execute arbitrary code.
Impact
- Remote Code Execution
System / Technologies affected
- Adobe Flash Player versions 11.6.602.180 and prior for Windows and Macintosh
- Adobe Flash Player versions 11.2.202.275 and prior for Linux
- Adobe Flash Player versions 11.1.115.48 and prior for Android 4.x
- Adobe Flash Player versions 11.1.111.44 and prior for Android 3.x and 2.x
- Adobe AIR versions 3.6.0.6090 and prior for Windows, Macintosh, and Android
- Adobe AIR SDK & Compiler versions 3.6.0.6090 and prior
- Google Chrome versions prior to 26.0.1410.63 for Mac and Linux
- Google Chrome versions prior to 26.0.1410.64 for Windows
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- Update to a fixed version.
- 11.7.700.169 for Windows and Mac
- 11.2.202.280 for Linux
- 11.1.111.50 for Android 3.x
- 11.1.115.54 for Android 4.x
- Google Chrome 26.0.1410.63 for Mac and Linux
- Google Chrome 26.0.1410.64 for Windows
Vulnerability Identifier
Source
Related Link
Share with