Adobe AIR Code Execution And DoS Vulnerabilities Nov13 (Mac OS X) Network Vulnerability

Summary

This host is installed with Adobe AIR and is prone to remote code execution and denial of service vulnerabilities.

Impact

Successful exploitation will allow attackers to execute arbitrary code, cause denial of service (memory corruption) and compromise a user's system. Impact Level: System/Application

Solution

Update to Adobe AIR version 3.9.0.1210 or later For updates refer to http://get.adobe.com/air

Insight

Flaws are due to multiple unspecified errors.

Affected

Adobe AIR before 3.9.0.1210 on Mac OS X

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://secunia.com/advisories/55527
http://www.adobe.com/support/security/bulletins/apsb13-26.html
http://www.osvdb.com/99656

Updated on 2017-03-28

Severity

Classification

CVE CVE-2013-5329, CVE-2013-5330

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe AIR Multiple Vulnerabilities-01 Sep13 (Mac OS X)
Adobe Flash Player Arbitrary Code Execution Vulnerability (Linux)
Adobe Acrobat Multiple Vulnerabilities - 01 May14 (Mac OS X)
Adobe Dreamweaver Insecure Library Loading Vulnerability
Adobe Acrobat Out-of-bounds Vulnerability Feb15 (Mac OS X)

Adobe AIR Code Execution and DoS Vulnerabilities Nov13 (Mac OS X)

Take action and discover your vulnerabilities