CVE-2013-0650

Опубликовано: 13 мар. 2013

Источник: nvd

CVSS2: 10

EPSS Низкий

Уязвимость use-after-free в Adobe Flash Player и Adobe AIR, позволяющая выполнять произвольный код

Описание

Уязвимость использования высвобожденной памяти в Adobe Flash Player и Adobe AIR позволяет злоумышленникам выполнять произвольный код через неопределенные векторы воздействия. Это представляет угрозу безопасности для пользователей, так как может позволить злоумышленникам выполнять произвольные команды или программы на целевых устройствах.

Затронутые версии ПО

Adobe Flash Player:
- До версии 10.3.183.68 и 11.x до 11.6.602.180 на Windows и Mac OS X
- До версии 10.3.183.68 и 11.x до 11.2.202.275 на Linux
- До версии 11.1.111.44 на Android 2.x и 3.x
- До версии 11.1.115.48 на Android 4.x
Adobe AIR:
- До версии 3.6.0.6090
Adobe AIR SDK:
- До версии 3.6.0.6090
Adobe AIR SDK & Compiler:
- До версии 3.6.0.6090

Тип уязвимости

Удалённое выполнение кода

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*

Версия до 11.6.602.171 (включая)

cpe:2.3:a:adobe:flash_player:11.0:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.0.1.152:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.0.1.152:*:*:*:*:*:x64:*

cpe:2.3:a:adobe:flash_player:11.0.1.153:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.102.55:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.102.55:*:*:*:*:*:x64:*

cpe:2.3:a:adobe:flash_player:11.1.102.59:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.102.62:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.102.63:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.111.5:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.111.6:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.111.7:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.111.8:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.7:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.34:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.36:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.223:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.228:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.233:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.235:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.236:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.238:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.243:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.251:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.258:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.261:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.262:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.270:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.273:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.3.300.257:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.3.300.262:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.3.300.265:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.3.300.268:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.3.300.270:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.3.300.271:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.3.300.273:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.4.402.265:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.4.402.278:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.4.402.287:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.5.502.110:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.5.502.135:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.5.502.136:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.5.502.146:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.5.502.149:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.6.602.167:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.6.602.168:*:*:*:*:*:*:*

Одно из

cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*

Конфигурация 2

Одновременно

Одно из

cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*

Версия до 11.2.202.273 (включая)

cpe:2.3:a:adobe:flash_player:11.0:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.0.1.152:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.0.1.152:*:*:*:*:*:x64:*

cpe:2.3:a:adobe:flash_player:11.0.1.153:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.102.55:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.102.55:*:*:*:*:*:x64:*

cpe:2.3:a:adobe:flash_player:11.1.102.59:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.102.62:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.102.63:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.111.5:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.111.6:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.111.7:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.111.8:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.7:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.34:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.36:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.223:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.228:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.233:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.235:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.236:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.238:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.243:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.251:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.258:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.261:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.262:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.270:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player_for_android:*:*:*:*:*:*:*:*

Версия до 11.1.111.43 (включая)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Конфигурация 3

Одновременно

Одно из

cpe:2.3:a:adobe:flash_player_for_android:*:*:*:*:*:*:*:*

Версия до 11.1.111.43 (включая)

cpe:2.3:a:adobe:flash_player_for_android:10.1.106.17:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player_for_android:10.2.157.51:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player_for_android:10.3.186.7:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player_for_android:11.0.1.153:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player_for_android:11.1.102.59:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player_for_android:11.1.111.5:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player_for_android:11.1.111.6:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player_for_android:11.1.111.7:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player_for_android:11.1.111.8:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player_for_android:11.1.111.9:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player_for_android:11.1.111.10:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player_for_android:11.1.111.16:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player_for_android:11.1.111.19:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player_for_android:11.1.111.24:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player_for_android:11.1.111.29:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player_for_android:11.1.111.31:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player_for_android:11.1.111.32:*:*:*:*:*:*:*

Одно из

cpe:2.3:o:google:android:2.0:*:*:*:*:*:*:*

cpe:2.3:o:google:android:2.0.1:*:*:*:*:*:*:*

cpe:2.3:o:google:android:2.1:*:*:*:*:*:*:*

cpe:2.3:o:google:android:2.2:*:*:*:*:*:*:*

cpe:2.3:o:google:android:2.2:rev1:*:*:*:*:*:*

cpe:2.3:o:google:android:2.2.1:*:*:*:*:*:*:*

cpe:2.3:o:google:android:2.2.2:*:*:*:*:*:*:*

cpe:2.3:o:google:android:2.2.3:*:*:*:*:*:*:*

cpe:2.3:o:google:android:2.3:*:*:*:*:*:*:*

cpe:2.3:o:google:android:2.3:rev1:*:*:*:*:*:*

cpe:2.3:o:google:android:2.3.1:*:*:*:*:*:*:*

cpe:2.3:o:google:android:2.3.2:*:*:*:*:*:*:*

cpe:2.3:o:google:android:2.3.3:*:*:*:*:*:*:*

cpe:2.3:o:google:android:2.3.4:*:*:*:*:*:*:*

cpe:2.3:o:google:android:2.3.5:*:*:*:*:*:*:*

cpe:2.3:o:google:android:2.3.6:*:*:*:*:*:*:*

cpe:2.3:o:google:android:2.3.7:*:*:*:*:*:*:*

cpe:2.3:o:google:android:3.0:*:*:*:*:*:*:*

cpe:2.3:o:google:android:3.1:*:*:*:*:*:*:*

cpe:2.3:o:google:android:3.2:*:*:*:*:*:*:*

cpe:2.3:o:google:android:3.2.1:*:*:*:*:*:*:*

cpe:2.3:o:google:android:3.2.2:*:*:*:*:*:*:*

cpe:2.3:o:google:android:3.2.4:*:*:*:*:*:*:*

cpe:2.3:o:google:android:3.2.6:*:*:*:*:*:*:*

Конфигурация 4