CVE-2013-3328
Last modified
CVE-2013-3328 is a vulnerability of currently unknown severity. Adobe Flash Player before 10.3.183.86 and 11.x before 11.7.700.202 on Windows and Mac OS X, before 10.3.183.86 and 11.x before 11.2.202.285 on Linux, before 11.1.111.54 on Android 2.x and 3.x, and before 11.1.115.58 on Android 4.x; Adobe AIR before 3.7.0.1860; and Adobe AIR SDK & Compiler before 3.7.0.1860 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-2728, CVE-2013-3324, CVE-2013-3325, CVE-2013-3326, CVE-2013-3327, CVE-2013-3329, CVE-2013-3330, CVE-2013-3331, CVE-2013-3332, CVE-2013-3333, CVE-2013-3334, and CVE-2013-3335.. EPSS estimates a 5.39% chance of exploitation in the next 30 days.
Description
Adobe Flash Player before 10.3.183.86 and 11.x before 11.7.700.202 on Windows and Mac OS X, before 10.3.183.86 and 11.x before 11.2.202.285 on Linux, before 11.1.111.54 on Android 2.x and 3.x, and before 11.1.115.58 on Android 4.x; Adobe AIR before 3.7.0.1860; and Adobe AIR SDK & Compiler before 3.7.0.1860 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-2728, CVE-2013-3324, CVE-2013-3325, CVE-2013-3326, CVE-2013-3327, CVE-2013-3329, CVE-2013-3330, CVE-2013-3331, CVE-2013-3332, CVE-2013-3333, CVE-2013-3334, and CVE-2013-3335.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Adobe | Flash Player | < 10.3.183.86 | — |
| Adobe | Flash Player | >= 11.0, < 11.7.700.202 | — |
| Adobe | Flash Player | >= 11.0, < 11.2.202.285 | — |
| Adobe | Flash Player | < 11.1.111.54 | — |
| Adobe | Flash Player | < 11.1.115.58 | — |
| Adobe | Adobe Air | < 3.7.0.1860 | — |
| Adobe | Adobe Air Sdk | < 3.7.0.1860 | — |
| Redhat | Enterprise Linux Desktop | 6.0 | — |
| Redhat | Enterprise Linux Eus | 5.9 | — |
| Redhat | Enterprise Linux Eus | 6.4 | — |
| Redhat | Enterprise Linux Server | 6.0 | — |
| Redhat | Enterprise Linux Server Eus | 5.9 | — |
| Redhat | Enterprise Linux Server Eus | 6.4 | — |
| Redhat | Enterprise Linux Workstation | 6.0 | — |
| Opensuse | Opensuse | 11.4 | — |
| Opensuse | Opensuse | 12.2 | — |
| Opensuse | Opensuse | 12.3 | — |
| Suse | Linux Enterprise Desktop | 10 | Sp4 |
| Suse | Linux Enterprise Desktop | 11 | Sp2 |
References
- http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00003.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00003.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00010.htmlMailing List, Third Party Advisory
- http://rhn.redhat.com/errata/RHSA-2013-0825.htmlThird Party Advisory
- http://secunia.com/advisories/53442Broken Link
- http://www.adobe.com/support/security/bulletins/apsb13-14.htmlPatch, Vendor Advisory
- http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00003.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00003.htmlMailing List, Third Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2013-06/msg00010.htmlMailing List, Third Party Advisory
- http://rhn.redhat.com/errata/RHSA-2013-0825.htmlThird Party Advisory
- http://secunia.com/advisories/53442Broken Link
- http://www.adobe.com/support/security/bulletins/apsb13-14.htmlPatch, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2013-3328?
How severe is CVE-2013-3328?
How do I fix CVE-2013-3328?
Are you affected by CVE-2013-3328?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST