Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.3
CVSSv2

CVE-2013-5332

Published: 11/12/2013 Updated: 13/12/2018
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
VMScore: 828
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Adobe

Vulnerability Summary

Adobe Flash Player prior to 11.7.700.257 and 11.8.x and 11.9.x prior to 11.9.900.170 on Windows and Mac OS X and prior to 11.2.202.332 on Linux, Adobe AIR prior to 3.9.0.1380, Adobe AIR SDK prior to 3.9.0.1380, and Adobe AIR SDK & Compiler prior to 3.9.0.1380 allow malicious users to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

adobe flash_player

adobe air sdk

adobe air

Vendor Advisories

Red Hat: Critical: flash-plugin security update
Synopsis Critical: flash-plugin security update Type/Severity Security Advisory: Critical Topic An updated Adobe Flash Player package that fixes two security issues is nowavailable for Red Hat Enterprise Linux 5 and 6 SupplementaryThe Red Hat Security Response Team has rated this update as having criticals ...
Red Hat: CVE-2013-5332
Adobe Flash Player before 117700257 and 118x and 119x before 119900170 on Windows and Mac OS X and before 112202332 on Linux, Adobe AIR before 3901380, Adobe AIR SDK before 3901380, and Adobe AIR SDK & Compiler before 3901380 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via uns ...

Recent Articles

Adobe Security Updates December 2013
Securelist • Roel Schouwenberg • 10 Dec 2013

This month Adobe’s realing fixes for both Flash Player and Shockwave. The vulnerabilies for Flash Player affect all platforms and concern two CVEs – CVE-2013-5331 and CVE-2013-5332, which both allow for remote code execution. Eploitation of CVE-2013-5331 using Microsoft Word as a leverage mechanism has been observed in the wild. Though Flash 11.6 introduced Click-to-Play for Office, users may still be socially engineered into running Flash content in Office documents. Make sure to apply this...

Read more...

References

CWE-94http://helpx.adobe.com/security/products/flash-player/apsb13-28.htmlhttp://rhn.redhat.com/errata/RHSA-2013-1818.htmlhttp://lists.opensuse.org/opensuse-updates/2013-12/msg00084.htmlhttp://lists.opensuse.org/opensuse-updates/2013-12/msg00075.htmlhttp://lists.opensuse.org/opensuse-security-announce/2013-12/msg00008.htmlhttps://access.redhat.com/errata/RHSA-2013:1818https://nvd.nist.govhttps://access.redhat.com/security/cve/cve-2013-5332
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924CVE-2024-3400overflowCVE-2024-23528CVE-2024-21338CVE-2024-3818CVE-2024-23535NULL pointer dereferenceelevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook