‫ Adobe Flash Player / AIR Multiple Vulnerabilities

IRCAD2013042634
ID: IRCAD2013042634
Release Date: 2013-04-09
Criticality level: Highly critical
 
Software:
Adobe AIR 3.x
Adobe Flash Player 11.x
 
Description:
Multiple vulnerabilities have been reported in Adobe Flash Player and Adobe AIR, which can be exploited by malicious people to compromise a user's system.
1) An integer overflow error can be exploited to execute arbitrary code.
2) Some unspecified errors can be exploited to cause memory corruption and execute arbitrary code.
3) An error when initializing certain pointer arrays can be exploited to cause memory corruption and execute arbitrary code.
The vulnerabilities are reported in the following products and versions:
* Adobe Flash Player versions 11.6.602.180 and prior for Windows and Macintosh
* Adobe Flash Player versions 11.2.202.275 and prior for Linux
* Adobe Flash Player versions 11.1.115.48 and prior for Android 4.x
* Adobe Flash Player versions 11.1.111.44 and prior for Android 3.x and 2.x
* Adobe AIR versions 3.6.0.6090 and prior for Windows, Macintosh, and Android
* Adobe AIR SDK & Compiler versions 3.6.0.6090 and prior
 
Solution
Update to a fixed version.
 
References:
 
Secunia:

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 21 فروردین 1392

امتیاز

امتیاز شما
تعداد امتیازها:0