Adobe AIR Code Execution And DoS Vulnerabilities Nov13 (Mac OS X) Network Vulnerability

Summary

This host is installed with Adobe AIR and is prone to remote code execution and denial of service vulnerabilities.

Impact

Successful exploitation will allow attackers to execute arbitrary code, cause denial of service (memory corruption) and compromise a user's system. Impact Level: System/Application

Solution

Update to Adobe AIR version 3.9.0.1210 or later For updates refer to http://get.adobe.com/air

Insight

Flaws are due to multiple unspecified errors.

Affected

Adobe AIR before 3.9.0.1210 on Mac OS X

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://secunia.com/advisories/55527
http://www.adobe.com/support/security/bulletins/apsb13-26.html
http://www.osvdb.com/99656

Updated on 2017-03-28

Severity

Classification

CVE CVE-2013-5329, CVE-2013-5330
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Air Multiple Vulnerabilities - October 12 (Windows)
Adobe AIR Multiple Vulnerabilities-01 Aug14 (Mac OS X)
Adobe Acrobat Multiple Unspecified Vulnerabilities -01 Feb13 (Mac OS X)
Adobe AIR Multiple Vulnerabilities-01 Dec13 (Mac OS X)
Adobe Acrobat Multiple Vulnerabilities-01 Sep14 (Mac OS X)

Adobe AIR Code Execution and DoS Vulnerabilities Nov13 (Mac OS X)

Take action and discover your vulnerabilities