First published: Mon Mar 11 2013(Updated: )
Integer overflow in Adobe Flash Player before 10.3.183.75 and 11.x before 11.7.700.169 on Windows and Mac OS X, before 10.3.183.75 and 11.x before 11.2.202.280 on Linux, before 11.1.111.50 on Android 2.x and 3.x, and before 11.1.115.54 on Android 4.x; Adobe AIR before 3.7.0.1530; and Adobe AIR SDK & Compiler before 3.7.0.1530 allows remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by VUPEN during a Pwn2Own competition at CanSecWest 2013.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Macromedia Flash Player | <=11.1.115.48 | |
Android | >=4.0<=4.4.4 | |
Macromedia Flash Player | <=11.1.111.44 | |
Android | >=2.0<=3.2.6 | |
Macromedia Flash Player | >=11.0<=11.6.602.180 | |
macOS | ||
Microsoft Windows Operating System | ||
Macromedia Flash Player | >=11.0<=11.2.202.275 | |
Linux Kernel | ||
Adobe | <=3.6.0.6090 | |
Android | ||
openSUSE | =11.4 | |
openSUSE | =12.1 | |
openSUSE | =12.2 | |
openSUSE | =12.3 | |
SUSE Linux Enterprise Desktop | =11-sp2 | |
Red Hat Enterprise Linux Desktop | =6.0 | |
Red Hat Enterprise Linux Server EUS | =5.9 | |
Red Hat Enterprise Linux Server EUS | =6.4 | |
Red Hat Enterprise Linux Server | =6.0 | |
Red Hat Enterprise Linux Server | =5.9 | |
Red Hat Enterprise Linux Server | =6.4 | |
Red Hat Enterprise Linux Workstation | =6.0 | |
Macromedia Flash Player | <10.3.183.75 | |
Macromedia Flash Player | <=10.3.183.75 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2013-2555 has a high severity rating due to the potential for arbitrary code execution.
To fix CVE-2013-2555, update Adobe Flash Player to version 10.3.183.75 or later and Adobe AIR to version 3.7.0.1530 or later.
Adobe Flash Player versions before 10.3.183.75 and 11.x before 11.7.700.169 are affected by CVE-2013-2555.
Yes, CVE-2013-2555 affects Adobe AIR prior to version 3.7.0.1530.
CVE-2013-2555 impacts users on Windows, Mac OS X, Linux, and certain versions of Android.