
Adobe Flash Player vulnerabilities
Vulnerability: Multiple vulnerabilities in Adobe Flash Player
Danger level: Critical
Patch: Yes
Number of vulnerabilities: 2
CVE ID: CVE-2013-0633
CVE-2013-0634
Vector of operation: Remote
Impact: System Compromise
Affected Products: Adobe Flash Player 11.x
Affected versions:
– Flash Player 11.5.502.146 and earlier versions for Windows and Macintosh;
– Flash Player 11.5.502.146 and earlier versions for Windows and Macintosh;
– Flash Player 11.2.202.261 and earlier versions for Linux;
– Flash Player 11.1.115.36 and earlier versions for Android 4.x;
– Flash Player 11.1.111.31 and earlier versions for Android 3.x and 2.x;
– Flash Player 11.5.31.137 and earlier versions for Chrome (Windows, Macintosh and Linux);
– Flash Player 11.3.378.5 and earlier versions of Internet Explorer 10 in Windows 8.
Description:
Which can be exploited by malicious people to bypass certain security restrictions on the target system.
1. The vulnerability is caused due to an unspecified error. A remote user can execute arbitrary code on the target system.
2. The vulnerability is caused due to an unspecified error. A remote user can execute arbitrary code on the target system.
Note: The vulnerability is being actively exploited in the present.
Manufacturer URL: http://www.adobe.com/
Solution: The vulnerabilities patch from the manufacturer.
Links:
http://www.adobe.com/support/security/bulletins/apsb13-04.html