Lucene search
Ubuntu.comUB:CVE-2013-0643HistoryFeb 27, 2013 - 12:00 a.m.
CVE-2013-0643
2013-02-2700:00:00
ubuntu.com
ubuntu.com
13
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
0.258
Percentile
96.8%
The Firefox sandbox in Adobe Flash Player before 10.3.183.67 and 11.x
before 11.6.602.171 on Windows and Mac OS X, and before 10.3.183.67 and
11.x before 11.2.202.273 on Linux, does not properly restrict privileges,
which makes it easier for remote attackers to execute arbitrary code via
crafted SWF content, as exploited in the wild in February 2013.
Notes
| Author | Note |
|---|---|
| jdstrand | chriscoulson provides updates for partner (adobe-flashplugin) |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 10.04 | noarch | adobe-flashplugin | < 11.2.202.273-0lucid1 | UNKNOWN |
| ubuntu | 11.10 | noarch | adobe-flashplugin | < 11.2.202.273-0oneiric1 | UNKNOWN |
| ubuntu | 12.04 | noarch | adobe-flashplugin | < 11.2.202.273-0precise1 | UNKNOWN |
| ubuntu | 12.10 | noarch | adobe-flashplugin | < 11.2.202.273-0quantal1 | UNKNOWN |
| ubuntu | 10.04 | noarch | flashplugin-nonfree | < 11.2.202.273ubuntu0.10.04.1 | UNKNOWN |
| ubuntu | 11.10 | noarch | flashplugin-nonfree | < 11.2.202.273ubuntu0.11.10.1 | UNKNOWN |
| ubuntu | 12.04 | noarch | flashplugin-nonfree | < 11.2.202.273ubuntu0.12.04.1 | UNKNOWN |
| ubuntu | 12.10 | noarch | flashplugin-nonfree | < 11.2.202.273ubuntu0.12.10.1 | UNKNOWN |
Related
vulnrichment
vulnrichment
CVE-2013-0643
2013-02-27 00:00:00
cisa_kev
cisa_kev
Adobe Flash Player Incorrect Default Permissions Vulnerability
2024-09-17 00:00:00
cvelist
cvelist
CVE-2013-0643
2013-02-27 00:00:00
cve
cve
CVE-2013-0643
2013-02-27 00:55:01
prion
prion
Code injection
2013-02-27 00:55:00
nvd
nvd
CVE-2013-0643
2013-02-27 00:55:01
cisa
cisa
Security Updates Available for Adobe Flash Player
2013-02-27 00:00:00
suse
suse
flash-player to 11.2.202.273 (critical)
2013-02-28 17:05:42
flash-player to 11.2.202.273 (critical)
2013-02-28 18:26:44
Security update for flash-player (critical)
2013-02-28 22:04:26
openvas
openvas
Adobe Flash Player Multiple Vulnerabilities -01 (Mar 2013) - Mac OS X
2013-03-04 00:00:00
Adobe Flash Player Multiple Vulnerabilities -01 (Mar 2013) - Linux
2013-03-04 00:00:00
Adobe Flash Player Multiple Vulnerabilities -01 March13 (Linux)
2013-03-04 00:00:00
nessus
nessus
FreeBSD : linux-flashplugin -- multiple vulnerabilities (dbdac023-80e1-11e2-9a29-001060e06fd4)
2013-02-28 00:00:00
Flash Player for Mac <= 10.3.183.61 / 11.6.602.167 Multiple Vulnerabilities (APSB13-08)
2013-02-27 00:00:00
openSUSE Security Update : flash-player (openSUSE-SU-2013:0359-2)
2014-06-13 00:00:00
freebsd
freebsd
linux-flashplugin -- multiple vulnerabilities
2013-02-26 00:00:00
redhat
redhat
(RHSA-2013:0574) Critical: flash-plugin security update
2013-02-27 00:00:00
threatpost
threatpost
Adobe Patches Two Critical Flash Player Vulnerabilities
2013-02-26 21:26:24
securityvulns
securityvulns
Adobe Flash Player multiple security vulnerabilities
2013-03-03 00:00:00
gentoo
gentoo
Adobe Flash Player: Multiple vulnerabilities
2013-09-14 00:00:00
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
0.258
Percentile
96.8%
Related for UB:CVE-2013-0643