CVE-2013-0504

EUVD-2013-0515
Buffer overflow in the broker service in Adobe Flash Player before 10.3.183.67 and 11.x before 11.6.602.171 on Windows and Mac OS X, and before 10.3.183.67 and 11.x before 11.2.202.273 on Linux, allows attackers to execute arbitrary code via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
10 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 89%
Affected Products (NVD)
VendorProductVersion
adobeflash_player
10.3 ≤
𝑥
< 10.3.183.67
adobeflash_player
11.6 ≤
𝑥
< 11.6.602.168
adobeflash_player
10.3 ≤
𝑥
< 10.3.183.67
adobeflash_player
11.2 ≤
𝑥
< 11.2.202.273
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
adobe-flashplugin
hardy
ignored
lucid
Fixed 11.2.202.273-0lucid1
released
oneiric
Fixed 11.2.202.273-0oneiric1
released
precise
Fixed 11.2.202.273-0precise1
released
quantal
Fixed 11.2.202.273-0quantal1
released
flashplugin-nonfree
hardy
ignored
lucid
Fixed 11.2.202.273ubuntu0.10.04.1
released
oneiric
Fixed 11.2.202.273ubuntu0.11.10.1
released
precise
Fixed 11.2.202.273ubuntu0.12.04.1
released
quantal
Fixed 11.2.202.273ubuntu0.12.10.1
released
Common Weakness Enumeration
References
http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00025.html
http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00026.html
http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00035.html
http://rhn.redhat.com/errata/RHSA-2013-0574.html
http://www.adobe.com/support/security/bulletins/apsb13-08.html
http://www.securityfocus.com/bid/58184
http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00025.html
http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00026.html
http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00035.html
http://rhn.redhat.com/errata/RHSA-2013-0574.html
http://www.adobe.com/support/security/bulletins/apsb13-08.html
http://www.securityfocus.com/bid/58184