CVE-2013-3362
flash-plugin: multiple code execution flaws (APSB13-21)
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Adobe Flash Player before 11.7.700.242 and 11.8.x before 11.8.800.168 on Windows and Mac OS X, before 11.2.202.310 on Linux, before 11.1.111.73 on Android 2.x and 3.x, and before 11.1.115.81 on Android 4.x; Adobe AIR before 3.8.0.1430; and Adobe AIR SDK & Compiler before 3.8.0.1430 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-3361, CVE-2013-3363, and CVE-2013-5324.
Adobe Flash Player anterior a 11.7.700.242 y 11.8.x anterior a 11.8.800.168 en Windows y Mac OS X, anterior a 11.2.202.310 en Linux, anterior a 11.1.111.73 en Android 2.x y 3.x, y anteriores, 11.1.115.81 en Android 4.x; Adobe AIR anterior a 3.8.0.1430; y Adobe AIR SDK & Compiler anterior a 3.8.0.1430 permite a atacantes ejecutar código arbitrario o causar denegación de servicio (corrupción de memoria) a través de vectores sin especificar. Vulnerabilidad diferente a CCVE-2013-3361, CVE-2013-3363, y CVE-2013-5324.
The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. This update fixes four vulnerabilities in Adobe Flash Player. These vulnerabilities are detailed in the Adobe Security bulletin APSB13-21, listed in the References section. Specially-crafted SWF content could cause flash-plugin to crash or, potentially, execute arbitrary code when a victim loads a page containing the malicious SWF content. All users of Adobe Flash Player should install this updated package, which upgrades Flash Player to version 11.2.202.310.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2013-05-06 CVE Reserved
- 2013-09-11 CVE Published
- 2024-08-06 CVE Updated
- 2025-03-29 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (7)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://www.adobe.com/support/security/bulletins/apsb13-21.html | 2018-12-13 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Adobe Search vendor "Adobe" | Flash Player Search vendor "Adobe" for product "Flash Player" | >= 11.0 < 11.7.700.242 Search vendor "Adobe" for product "Flash Player" and version " >= 11.0 < 11.7.700.242" | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | - | - |
Safe
|
| Adobe Search vendor "Adobe" | Flash Player Search vendor "Adobe" for product "Flash Player" | >= 11.0 < 11.7.700.242 Search vendor "Adobe" for product "Flash Player" and version " >= 11.0 < 11.7.700.242" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | - | - |
Safe
|
| Adobe Search vendor "Adobe" | Flash Player Search vendor "Adobe" for product "Flash Player" | >= 11.8 < 11.8.800.168 Search vendor "Adobe" for product "Flash Player" and version " >= 11.8 < 11.8.800.168" | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | - | - |
Safe
|
| Adobe Search vendor "Adobe" | Flash Player Search vendor "Adobe" for product "Flash Player" | >= 11.8 < 11.8.800.168 Search vendor "Adobe" for product "Flash Player" and version " >= 11.8 < 11.8.800.168" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | - | - |
Safe
|
| Adobe Search vendor "Adobe" | Flash Player Search vendor "Adobe" for product "Flash Player" | >= 11.0 < 11.2.202.310 Search vendor "Adobe" for product "Flash Player" and version " >= 11.0 < 11.2.202.310" | - |
Affected
| in | Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | - | - |
Safe
|
| Adobe Search vendor "Adobe" | Flash Player Search vendor "Adobe" for product "Flash Player" | >= 11.0 < 11.1.111.73 Search vendor "Adobe" for product "Flash Player" and version " >= 11.0 < 11.1.111.73" | - |
Affected
| in | Google Search vendor "Google" | Android Search vendor "Google" for product "Android" | >= 2.0 <= 2.3.7 Search vendor "Google" for product "Android" and version " >= 2.0 <= 2.3.7" | - |
Safe
|
| Adobe Search vendor "Adobe" | Flash Player Search vendor "Adobe" for product "Flash Player" | >= 11.0 < 11.1.111.73 Search vendor "Adobe" for product "Flash Player" and version " >= 11.0 < 11.1.111.73" | - |
Affected
| in | Google Search vendor "Google" | Android Search vendor "Google" for product "Android" | >= 3.0 <= 3.2.6 Search vendor "Google" for product "Android" and version " >= 3.0 <= 3.2.6" | - |
Safe
|
| Adobe Search vendor "Adobe" | Flash Player Search vendor "Adobe" for product "Flash Player" | >= 11.0 < 11.1.115.81 Search vendor "Adobe" for product "Flash Player" and version " >= 11.0 < 11.1.115.81" | - |
Affected
| in | Google Search vendor "Google" | Android Search vendor "Google" for product "Android" | >= 4.0 <= 4.4.4 Search vendor "Google" for product "Android" and version " >= 4.0 <= 4.4.4" | - |
Safe
|
| Adobe Search vendor "Adobe" | Air Search vendor "Adobe" for product "Air" | < 3.8.0.1430 Search vendor "Adobe" for product "Air" and version " < 3.8.0.1430" | - |
Affected
| ||||||
| Adobe Search vendor "Adobe" | Air Sdk Search vendor "Adobe" for product "Air Sdk" | < 3.8.0.1430 Search vendor "Adobe" for product "Air Sdk" and version " < 3.8.0.1430" | - |
Affected
| ||||||