CVE-2013-3347

Опубликовано: 10 июл. 2013

Источник: nvd

CVSS2: 10

EPSS Низкий

Уязвимость выполнения произвольного кода в Adobe Flash Player через некорректную обработку данных PCM при изменении частоты дискретизации

Описание

Уязвимость в Adobe Flash Player связана с переполнением целого числа из-за некорректной обработки данных PCM при изменении частоты дискретизации. Это позволяет злоумышленникам выполнять произвольный код.

Затронутые версии ПО

Adobe Flash Player до версии 11.7.700.232 и 11.8.x до 11.8.800.94 на Windows и Mac OS X
Версия до 11.2.202.297 на Linux
Версия до 11.1.111.64 на Android 2.x и 3.x
Версия до 11.1.115.69 на Android 4.x

Тип уязвимости

Выполнение произвольного кода

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*

Версия до 11.7.700.224 (включая)

cpe:2.3:a:adobe:flash_player:11.0:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.0.1.152:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.0.1.153:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.102.55:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.102.59:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.102.62:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.102.63:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.111.8:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.111.44:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.111.50:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.111.54:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.7:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.34:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.48:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.54:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.58:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.223:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.228:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.233:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.235:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.236:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.238:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.243:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.251:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.258:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.261:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.262:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.270:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.273:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.275:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.280:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.285:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.3.300.257:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.3.300.262:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.3.300.265:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.3.300.268:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.3.300.270:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.3.300.271:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.3.300.273:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.4.402.265:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.4.402.278:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.4.402.287:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.5.502.110:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.5.502.135:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.5.502.136:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.5.502.146:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.5.502.149:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.6.602.167:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.6.602.168:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.6.602.171:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.6.602.180:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.7.700.169:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.7.700.202:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*

Конфигурация 2

Одновременно

Одно из

cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*

Версия до 11.7.700.225 (включая)

cpe:2.3:a:adobe:flash_player:11.0:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.0.1.152:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.0.1.153:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.102.55:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.102.59:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.102.62:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.102.63:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.111.8:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.111.44:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.111.50:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.111.54:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.7:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.34:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.48:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.54:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.58:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.223:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.228:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.233:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.235:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.236:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.238:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.243:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.251:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.258:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.261:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.262:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.270:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.273:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.275:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.280:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.285:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.3.300.257:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.3.300.262:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.3.300.265:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.3.300.268:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.3.300.270:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.3.300.271:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.3.300.273:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.4.402.265:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.4.402.278:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.4.402.287:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.5.502.110:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.5.502.135:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.5.502.136:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.5.502.146:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.5.502.149:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.6.602.167:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.6.602.168:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.6.602.171:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.6.602.180:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.7.700.169:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.7.700.202:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.7.700.224:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*

Конфигурация 3

Одновременно

Одно из

cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*

Версия до 11.2.202.291 (включая)

cpe:2.3:a:adobe:flash_player:11.0:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.0.1.152:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.0.1.153:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.102.55:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.102.59:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.102.62:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.102.63:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.111.8:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.111.44:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.111.50:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.111.54:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.7:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.34:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.48:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.54:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.58:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.223:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.228:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.233:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.235:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.236:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.238:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.243:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.251:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.258:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.261:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.262:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.270:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.273:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.275:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.280:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.2.202.285:*:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Конфигурация 4

Одновременно

Одно из

cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*

Версия до 11.1.115.59 (включая)

cpe:2.3:a:adobe:flash_player:11.0:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.0.1.152:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.0.1.153:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.102.55:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.102.59:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.102.62:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.102.63:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.111.8:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.111.44:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.111.50:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.111.54:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.7:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.34:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.48:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.54:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.58:*:*:*:*:*:*:*

Одно из

cpe:2.3:o:google:android:2.0:*:*:*:*:*:*:*

cpe:2.3:o:google:android:2.0.1:*:*:*:*:*:*:*

cpe:2.3:o:google:android:2.1:*:*:*:*:*:*:*

cpe:2.3:o:google:android:2.2:*:*:*:*:*:*:*

cpe:2.3:o:google:android:2.2:rev1:*:*:*:*:*:*

cpe:2.3:o:google:android:2.2.1:*:*:*:*:*:*:*

cpe:2.3:o:google:android:2.2.2:*:*:*:*:*:*:*

cpe:2.3:o:google:android:2.2.3:*:*:*:*:*:*:*

cpe:2.3:o:google:android:2.3:*:*:*:*:*:*:*

cpe:2.3:o:google:android:2.3:rev1:*:*:*:*:*:*

cpe:2.3:o:google:android:2.3.1:*:*:*:*:*:*:*

cpe:2.3:o:google:android:2.3.2:*:*:*:*:*:*:*

cpe:2.3:o:google:android:2.3.3:*:*:*:*:*:*:*

cpe:2.3:o:google:android:2.3.4:*:*:*:*:*:*:*

cpe:2.3:o:google:android:2.3.5:*:*:*:*:*:*:*

cpe:2.3:o:google:android:2.3.6:*:*:*:*:*:*:*

cpe:2.3:o:google:android:2.3.7:*:*:*:*:*:*:*

cpe:2.3:o:google:android:3.0:*:*:*:*:*:*:*

cpe:2.3:o:google:android:3.1:*:*:*:*:*:*:*

cpe:2.3:o:google:android:3.2:*:*:*:*:*:*:*

cpe:2.3:o:google:android:3.2.1:*:*:*:*:*:*:*

cpe:2.3:o:google:android:3.2.2:*:*:*:*:*:*:*

cpe:2.3:o:google:android:3.2.4:*:*:*:*:*:*:*

cpe:2.3:o:google:android:3.2.6:*:*:*:*:*:*:*

Конфигурация 5

Одновременно

Одно из

cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:*

Версия до 11.1.115.63 (включая)

cpe:2.3:a:adobe:flash_player:11.0:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.0.1.152:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.0.1.153:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.102.55:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.102.59:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.102.62:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.102.63:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.111.8:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.111.44:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.111.50:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.111.54:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.7:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.34:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.48:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.54:*:*:*:*:*:*:*

cpe:2.3:a:adobe:flash_player:11.1.115.58:*:*:*:*:*:*:*

Одно из

cpe:2.3:o:google:android:4.0:*:*:*:*:*:*:*

cpe:2.3:o:google:android:4.0.1:*:*:*:*:*:*:*

cpe:2.3:o:google:android:4.0.2:*:*:*:*:*:*:*

cpe:2.3:o:google:android:4.0.3:*:*:*:*:*:*:*

cpe:2.3:o:google:android:4.0.4:*:*:*:*:*:*:*

cpe:2.3:o:google:android:4.1:*:*:*:*:*:*:*

cpe:2.3:o:google:android:4.1.2:*:*:*:*:*:*:*

cpe:2.3:o:google:android:4.2:*:*:*:*:*:*:*

EPSS

Процентиль: 93%

0.0999

Низкий

10 Critical

CVSS2

Дефекты

CWE-189

Связанные уязвимости

CVE-2013-3347

ubuntu

больше 12 лет назад

Integer overflow in Adobe Flash Player before 11.7.700.232 and 11.8.x before 11.8.800.94 on Windows and Mac OS X, before 11.2.202.297 on Linux, before 11.1.111.64 on Android 2.x and 3.x, and before 11.1.115.69 on Android 4.x allows attackers to execute arbitrary code via PCM data that is not properly handled during resampling.

CVE-2013-3347

redhat

больше 12 лет назад

GHSA-gg7j-4m6j-hpg3

github

больше 3 лет назад

SUSE-SU-2015:1137-1

suse-cvrf

около 11 лет назад

Security update for flash-player

SUSE-SU-2015:1064-1

suse-cvrf

около 11 лет назад

Security update for flash-player

EPSS

Процентиль: 93%

0.0999

Низкий

10 Critical

CVSS2

Дефекты

CWE-189