CVE-2013-0504

Buffer overflow in the broker service in Adobe Flash Player before 10.3.183.67 and 11.x before 11.6.602.171 on Windows and Mac OS X, and before 10.3.183.67 and 11.x before 11.2.202.273 on Linux, allows attackers to execute arbitrary code via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
10 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:C/A:C
ibmCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 94%
VendorProductVersion
adobeflash_player
10.3 ≤
𝑥
< 10.3.183.67
adobeflash_player
11.6 ≤
𝑥
< 11.6.602.168
adobeflash_player
10.3 ≤
𝑥
< 10.3.183.67
adobeflash_player
11.2 ≤
𝑥
< 11.2.202.273
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
adobe-flashplugin
quantal
Fixed 11.2.202.273-0quantal1
released
precise
Fixed 11.2.202.273-0precise1
released
oneiric
Fixed 11.2.202.273-0oneiric1
released
lucid
Fixed 11.2.202.273-0lucid1
released
hardy
ignored
flashplugin-nonfree
quantal
Fixed 11.2.202.273ubuntu0.12.10.1
released
precise
Fixed 11.2.202.273ubuntu0.12.04.1
released
oneiric
Fixed 11.2.202.273ubuntu0.11.10.1
released
lucid
Fixed 11.2.202.273ubuntu0.10.04.1
released
hardy
ignored
Common Weakness Enumeration
References
http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00025.html
http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00026.html
http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00035.html
http://rhn.redhat.com/errata/RHSA-2013-0574.html
http://www.adobe.com/support/security/bulletins/apsb13-08.html
http://www.securityfocus.com/bid/58184
http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00025.html
http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00026.html
http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00035.html
http://rhn.redhat.com/errata/RHSA-2013-0574.html
http://www.adobe.com/support/security/bulletins/apsb13-08.html
http://www.securityfocus.com/bid/58184