Summary
This host is installed with Adobe Air and is prone to buffer overflow vulnerability.
Impact
Successful exploitation will allow remote attackers to execute arbitrary code or cause denial of service condition.
Impact Level: System/Application
Solution
Update to Adobe Air version 3.5.0.1060 or later,
For updates refer to http://get.adobe.com/air
Insight
An integer overflow error within 'flash.display.BitmapData()', which can be exploited to cause a heap-based buffer overflow.
Affected
Adobe AIR version 3.5.0.880 and earlier on Windows
References
Severity
Classification
-
CVE CVE-2013-0630 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe Reader '/Registry' and '/Ordering' Buffer Overflow Vulnerability (Win)
- AIMP ID3 Tag Buffer Overflow Vulnerability
- Adobe Shockwave Player 3D Model Buffer Overflow Vulnerabilities
- Active Perl 'Perl_repeatcpy()' Function Buffer Overflow Vulnerability (Windows)
- Dell Webcam 'crazytalk4.ocx' ActiveX Multiple BOF Vulnerabilities