CVE-2013-1371

Adobe Flash Player < 11.6.602.180 - Remote Code Execution via Memory Corruption

Title source: llm
STIX 2.1

Description

Adobe Flash Player before 10.3.183.68 and 11.x before 11.6.602.180 on Windows and Mac OS X, before 10.3.183.68 and 11.x before 11.2.202.275 on Linux, before 11.1.111.44 on Android 2.x and 3.x, and before 11.1.115.48 on Android 4.x; Adobe AIR before 3.6.0.6090; Adobe AIR SDK before 3.6.0.6090; and Adobe AIR SDK & Compiler before 3.6.0.6090 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.

References (6)

Core 6
Core References
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2013-0643.html
Mailing List vendor-advisory x_refsource_hp
http://marc.info/?l=bugtraq&m=139455789818399&w=2

Scores

EPSS 0.0514
EPSS Percentile 91.4%

Details

CWE
CWE-119
Status published
Products (50)
adobe/adobe_air
adobe/adobe_air 1.0
adobe/adobe_air 1.0.1
adobe/adobe_air 1.0.8.4990
adobe/adobe_air 1.0.4990
adobe/adobe_air 1.1
adobe/adobe_air 1.1.0.5790
adobe/adobe_air 1.5
adobe/adobe_air 1.5.0.7220
adobe/adobe_air 1.5.1
... and 40 more
Published Mar 13, 2013
Tracked Since Feb 18, 2026