Adobe Flash Player Type Confusion Remote Code Execution

No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = NormalRanking include Msf::Exploit::Remote::BrowserExploitServer def...

openSUSE Security Update : flash-player (openSUSE-SU-2013:1915-1)

This update fixes the following security issues with flash-player : - Security update to 11.2.202.332: bnc854881 - APSB13-28, CVE-2013-5331, CVE-2013-5332 - Prevents possible remote code execution! %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in thi...

Adobe Flash Player Type Confusion Remote Code Execution Exploit

This Metasploit module exploits a type confusion vulnerability found in the ActiveX component of Adobe Flash Player. This vulnerability was found exploited in the wild in November 2013. This Metasploit module has been tested successfully on IE 6 to IE 10 with Flash 11.7, 11.8 and 11.9 prior to...

Adobe Flash Player Type Confusion Arbitrary Code Execution (APSB13-28; CVE-2013-5331)

A remote code execution vulnerability has been reported in Adobe Flash Player. The vulnerability is due to a type confusion condition while handling a malformed SWF file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted SWF file. Successful exploitation...

CVE-2013-5331

creationtimestamp| type| source ---|---|--- 2014-01-13 09:01:31+00:00| seen| MISP/52d3ab1a-17b4-4be0-a423-f046950d2109 2014-01-15 15:11:40+00:00| seen| MISP/52d6a4ff-c254-4696-a8aa-19e9ac1d4fa4 2014-02-17 10:36:36+00:00| seen| MISP/5301e1b4-38e0-4603-a6ec-8454950d2109 2014-04-29 00:00:00+00:00|...

Adobe Flash Player Multiple Vulnerabilities-01 (Dec 2013) - Windows

Adobe Flash Player is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:flashplayer";...

SuSE 11.2 / 11.3 Security Update : flash-player (SAT Patch Numbers 8639 / 8640)

This update fixes the following security issues with flash-player : - flash-plugin: multiple code execution flaws APSB13-28. bnc854881 - These updates resolve a type confusion vulnerability that could lead to code execution. CVE-2013-5331 - These updates resolve a memory corruption vulnerability...

CVE-2013-5331

Adobe Flash Player before 11.7.700.257 and 11.8.x and 11.9.x before 11.9.900.170 on Windows and Mac OS X and before 11.2.202.332 on Linux, Adobe AIR before 3.9.0.1380, Adobe AIR SDK before 3.9.0.1380, and Adobe AIR SDK & Compiler before 3.9.0.1380 allow remote attackers to execute arbitrary code...

Adobe Flash Player及AIR类型混淆远程代码执行漏洞(CVE-2013-5331)

BUGTRAQ ID: 64199 CVECAN ID: CVE-2013-5331 Adobe Flash Player是一个集成的多媒体播放器。Adobe AIR是针对网络与桌面应用的结合所开发出来的技术，可以不必经由浏览器而对网络上的云端程式做控制。 Adobe Flash Player及AIR在实现上存在类型混淆错误，攻击者可利用此漏洞在受影响应用上下文中执行任意代码。 0 Adobe Flash Player = 11.9.900.152 Adobe Flash Player = 11.2.202.327 Adobe AIR = 3.9.0.1210 厂商补丁： Adobe...

Adobe Updates Security for Flash, Shockwave Players

Adobe published two security bulletins today, resolving a pair of vulnerabilities in both Shockwave and Flash Player. The Shockwave security update applies to versions 12.0.6.147 and earlier on Windows and Mac OS X and addresses a pair of memory corruption vulnerabilities CVE-2013-5333 and...