Summary
This host is installed with Adobe Air and is prone to buffer overflow vulnerability.
Impact
Successful exploitation will allow remote attackers to execute arbitrary code or cause denial of service condition.
Impact Level: System/Application
Solution
Update to Adobe Air version 3.5.0.1060 or later,
For updates refer to http://get.adobe.com/air
Insight
An integer overflow error within 'flash.display.BitmapData()', which can be exploited to cause a heap-based buffer overflow.
Affected
Adobe AIR version 3.5.0.880 and earlier on on Mac OS X
References
Severity
Classification
-
CVE CVE-2013-0630 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Cyrus SASL Remote Buffer Overflow Vulnerability
- Adobe Reader 'Plug-in' Buffer Overflow Vulnerability (Linux)
- Adobe Flash Player Buffer Overflow Vulnerability (Linux)
- 3CTftpSvc TFTP Server Long Mode Buffer Overflow Vulnerability
- DATAC RealWin SCADA Server On_FC_CONNECT_FCS_a_FILE Buffer Overflow Vulnerability