Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2013-2555
HistoryMar 11, 2013 - 10:55 a.m.

CVE-2013-2555

2013-03-1110:55:01
CWE-190
[email protected]
web.nvd.nist.gov
121
4
cve
adobe flash player
integer overflow
remote code execution
vupen
pwn2own
cansecwest 2013

7.8 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.322 Low

EPSS

Percentile

97.0%

JSON

Integer overflow in Adobe Flash Player before 10.3.183.75 and 11.x before 11.7.700.169 on Windows and Mac OS X, before 10.3.183.75 and 11.x before 11.2.202.280 on Linux, before 11.1.111.50 on Android 2.x and 3.x, and before 11.1.115.54 on Android 4.x; Adobe AIR before 3.7.0.1530; and Adobe AIR SDK & Compiler before 3.7.0.1530 allows remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by VUPEN during a Pwn2Own competition at CanSecWest 2013.

Affected configurations

NVD
Node
adobeflash_playerRange≀11.1.115.48
AND
googleandroidRange4.0–4.4.4
Node
adobeflash_playerRange≀11.1.111.44
AND
googleandroidRange2.0–3.2.6
Node
adobeflash_playerRange11.0–11.6.602.180
AND
applemacosMatch-
OR
microsoftwindowsMatch-
Node
adobeflash_playerRange11.0–11.2.202.275
AND
linuxlinux_kernelMatch-
Node
adobeairRange≀3.6.0.6090
AND
applemacosMatch-
OR
googleandroidMatch-
OR
microsoftwindowsMatch-
Node
opensuseopensuseMatch11.4
OR
opensuseopensuseMatch12.1
OR
opensuseopensuseMatch12.2
OR
opensuseopensuseMatch12.3
OR
suselinux_enterprise_desktopMatch11sp2
Node
redhatenterprise_linux_desktopMatch6.0
OR
redhatenterprise_linux_eusMatch5.9
OR
redhatenterprise_linux_eusMatch6.4
OR
redhatenterprise_linux_serverMatch6.0
OR
redhatenterprise_linux_server_ausMatch5.9
OR
redhatenterprise_linux_server_ausMatch6.4
OR
redhatenterprise_linux_workstationMatch6.0
Node
adobeflash_playerRange<10.3.183.75
AND
applemacosMatch-
OR
microsoftwindowsMatch-
Node
adobeflash_playerRange≀10.3.183.75
AND
linuxlinux_kernelMatch-

Social References

More

Related

zdi 1
checkpoint_advisories 1
prion 1
seebug 1
cvelist 1
nvd 1
securityvulns 4
ubuntucve 1
redhat 1
openvas 13
nessus 15
suse 3
gentoo 1
zdi
zdi
(Pwn2Own) Adobe Flash RTMP Parsing Remote Code Execution Vulnerability
2015-09-18 00:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Flash Player RTMP Code Execution (APSB13-11; CVE-2013-2555)
2013-04-18 00:00:00
prion
prion
Integer overflow
2013-03-11 10:55:00
seebug
seebug
Adobe Flash Playerε’ŒAIRθΏœη¨‹ζ•΄ζ•°ζΊ’ε‡ΊζΌζ΄ž(CVE-2013-2555)
2013-04-11 00:00:00
cvelist
cvelist
CVE-2013-2555
2013-03-11 10:00:00
nvd
nvd
CVE-2013-2555
2013-03-11 10:55:01
securityvulns
securityvulns
VUPEN Security Research - Adobe Flash Player RTMP Data Processing Object Confusion &#40;CVE-2013-2555&#41;
2013-04-22 00:00:00
Adobe Flash Player multiple security vulnerabilities
2013-04-22 00:00:00
HP Systems Insight Manager multiple security vulnerabilities
2014-03-27 00:00:00
ubuntucve
ubuntucve
CVE-2013-2555
2013-03-11 00:00:00
redhat
redhat
(RHSA-2013:0730) Critical: flash-plugin security update
2013-04-10 00:00:00
openvas
openvas
Adobe AIR Multiple Vulnerabilities -02 April 13 (Windows)
2013-04-19 00:00:00
SuSE Update for flash-player openSUSE-SU-2013:0675-1 (flash-player)
2013-11-19 00:00:00
Adobe AIR Multiple Vulnerabilities -02 (Apr 2013) - Mac OS X
2013-04-19 00:00:00
nessus
nessus
SuSE 10 Security Update : flash-player (ZYPP Patch Number 8539)
2013-04-13 00:00:00
Flash Player for Mac <= 10.3.183.68 / 11.6.602.180 Multiple Vulnerabilities (APSB13-11)
2013-04-10 00:00:00
Adobe AIR 3.x <= 3.6.0.6090 Multiple Vulnerabilities (APSB13-11)
2013-04-10 00:00:00
suse
suse
flash-player update to 11.2.202.280 (important)
2013-04-13 10:04:26
Security update for flash-player (important)
2013-04-12 19:05:01
Security update for flash-player (important)
2013-04-11 23:04:36
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2013-09-14 00:00:00

7.8 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.322 Low

EPSS

Percentile

97.0%

JSON
Related for CVE-2013-2555
zdi1checkpoint_advisories1prion1seebug1cvelist1nvd1securityvulns4ubuntucve1redhat1openvas13nessus15suse3gentoo1