Adobe Flash Player Code Execution And DoS Vulnerabilities Nov13 (Mac OS X) Network Vulnerability

Summary

This host is installed with Adobe Flash Player and is prone to remote code execution and denial of service vulnerabilities.

Impact

Successful exploitation will allow attackers to execute arbitrary code, cause denial of service (memory corruption) and compromise a user's system. Impact Level: System/Application

Solution

Update to Adobe Flash Player version 11.7.700.252 or 11.9.900.152 or later. For updates refer to http://get.adobe.com/flashplayer

Insight

Flaws are due to unspecified errors.

Affected

Adobe Flash Player before 11.7.700.252, 11.8.x and 11.9.x before 11.9.900.152 on Mac OS X

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://secunia.com/advisories/55527
http://www.adobe.com/support/security/bulletins/apsb13-26.html
http://www.osvdb.com/99656

Updated on 2017-03-28

Severity

Classification

CVE CVE-2013-5329, CVE-2013-5330
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Air Multiple Vulnerabilities - October 12 (Windows)
Adobe ExtendedScript Toolkit (ESTK) Insecure Library Loading Vulnerability (Win)
Adobe Flash Player 'SWF' File Multiple Code Execution Vulnerability - Mac OS X
Adobe AIR Multiple Vulnerabilities -02 April 13 (Mac OS X)
Adobe Air Multiple Vulnerabilities June-2012 (Mac OS X)

Adobe Flash Player Code Execution and DoS Vulnerabilities Nov13 (Mac OS X)

Take action and discover your vulnerabilities