CVE-2013-2555

Severity

99%

Complexity

99%

Confidentiality

165%

CVSS 2.0 Base Score 9.9. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:C/I:C/A:C).

Overview

First reported 11 years ago

2013-03-11 10:55:00

Last updated 5 years ago

2019-04-22 17:48:00

Affected Software

Red Hat Enterprise Linux 5

5

Red Hat Enterprise Linux 6.0

6.0

Adobe Integrated Runtime (AIR) 3.0.0.4080

3.0.0.4080

Adobe Integrated Runtime (AIR) 3.1.0.4880

3.1.0.4880

Adobe Adobe Integrated Runtime (AIR) 3.3.0.3670

3.3.0.3670

Adobe Adobe Integrated Runtime (AIR) 3.4.0.2540

3.4.0.2540

Adobe Adobe Integrated Runtime (AIR) 3.4.0.2710

3.4.0.2710

Adobe Adobe Integrated Runtime (AIR) 3.5.0.600

3.5.0.600

Adobe Adobe Integrated Runtime (AIR) 3.5.0.880

3.5.0.880

Adobe Adobe Integrated Runtime (AIR) 3.5.0.890

3.5.0.890

Adobe Adobe Integrated Runtime (AIR) 3.5.0.1060

3.5.0.1060

Adobe Adobe Integrated Runtime (AIR) 3.6.0.597

3.6.0.597

Adobe Adobe Integrated Runtime (AIR)

Adobe Adobe Integrated Runtime (AIR) SDK 3.0.0.4080

3.0.0.4080

Adobe Adobe Integrated Runtime (AIR) SDK 3.1.0.488

3.1.0.488

Adobe Adobe Integrated Runtime (AIR) SDK 3.2.0.2070

3.2.0.2070

Adobe Adobe Integrated Runtime (AIR) SDK 3.3.0.3650

3.3.0.3650

Adobe Adobe Integrated Runtime (AIR) SDK 3.3.0.3690

3.3.0.3690

Adobe Adobe Integrated Runtime (AIR) SDK 3.4.0.2540

3.4.0.2540

Adobe Adobe Integrated Runtime (AIR) SDK 3.4.0.2710

3.4.0.2710

Adobe Adobe Integrated Runtime (AIR) SDK 3.5.0.600

3.5.0.600

Adobe Adobe Integrated Runtime (AIR) SDK 3.5.0.880

3.5.0.880

Adobe Adobe Integrated Runtime (AIR) SDK 3.5.0.890

3.5.0.890

Adobe Adobe Integrated Runtime (AIR) SDK 3.5.0.1060

3.5.0.1060

Adobe Adobe Integrated Runtime (AIR) SDK 3.6.0.599

3.6.0.599

OpenSUSE 12.1

12.1

OpenSUSE 12.2

12.2

OpenSUSE 12.3

12.3

Novell Suse Linux Enterprise Desktop 11.0 Service Pack 2

11.0

References

20130418 VUPEN Security Research - Adobe Flash Player RTMP Data Processing Object Confusion (CVE-2013-2555)

http://h30499.www3.hp.com/t5/HP-Security-Research-Blog/Pwn2Own-2013/ba-p/5981157

SUSE-SU-2013:0670

Vendor Advisory

openSUSE-SU-2013:0675

Vendor Advisory

openSUSE-SU-2013:0672

Vendor Advisory

HPSBMU02948

RHSA-2013:0730

Vendor Advisory

http://twitter.com/thezdi/statuses/309756927301283840

http://twitter.com/VUPEN/statuses/309713355466227713

http://www.adobe.com/support/security/bulletins/apsb13-11.html

Vendor Advisory

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.