9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.963 High
EPSS
Percentile
99.5%
Adobe Flash Player before 11.7.700.257 and 11.8.x and 11.9.x before
11.9.900.170 on Windows and Mac OS X and before 11.2.202.332 on Linux,
Adobe AIR before 3.9.0.1380, Adobe AIR SDK before 3.9.0.1380, and Adobe AIR
SDK & Compiler before 3.9.0.1380 allow remote attackers to execute
arbitrary code via crafted .swf content that leverages an unspecified βtype
confusion,β as exploited in the wild in December 2013.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 12.04 | noarch | adobe-flashplugin | <Β 11.2.202.332-0precise2 | UNKNOWN |
ubuntu | 12.10 | noarch | adobe-flashplugin | <Β 11.2.202.332-0quantal2 | UNKNOWN |
ubuntu | 13.04 | noarch | adobe-flashplugin | <Β 11.2.202.332-0raring2 | UNKNOWN |
ubuntu | 13.10 | noarch | adobe-flashplugin | <Β 11.2.202.332-0saucy1 | UNKNOWN |
ubuntu | 12.04 | noarch | flashplugin-nonfree | <Β 11.2.202.332ubuntu0.12.04.1 | UNKNOWN |
ubuntu | 12.10 | noarch | flashplugin-nonfree | <Β 11.2.202.332ubuntu0.12.10.1 | UNKNOWN |
ubuntu | 13.04 | noarch | flashplugin-nonfree | <Β 11.2.202.332ubuntu0.13.04.1 | UNKNOWN |
ubuntu | 13.10 | noarch | flashplugin-nonfree | <Β 11.2.202.332ubuntu0.12.10.1 | UNKNOWN |