Adobe AIR Code Execution And DoS Vulnerabilities Nov13 (Windows) Network Vulnerability

Summary

This host is installed with Adobe AIR and is prone to remote code execution and denial of service vulnerabilities.

Impact

Successful exploitation will allow attackers to execute arbitrary code, cause denial of service (memory corruption) and compromise a user's system. Impact Level: System/Application

Solution

Update to Adobe AIR version 3.9.0.1210 or later For updates refer to http://get.adobe.com/air

Insight

Flaws are due to multiple unspecified errors.

Affected

Adobe AIR before 3.9.0.1210 on Windows

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://secunia.com/advisories/55527
http://www.adobe.com/support/security/bulletins/apsb13-26.html
http://www.osvdb.com/99656

Updated on 2017-03-28

Severity

Classification

CVE CVE-2013-5329, CVE-2013-5330

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Captivate Insecure Library Loading Vulnerability
Adobe Acrobat and Reader PDF Handling Multiple Vulnerabilities (Linux)
Adobe Acrobat Out-of-bounds Vulnerability Feb15 (Windows)
Adobe Dreamweaver Insecure Library Loading Vulnerability
Adobe Acrobat Multiple Unspecified Vulnerabilities -01 Feb13 (Windows)

Adobe AIR Code Execution and DoS Vulnerabilities Nov13 (Windows)

Take action and discover your vulnerabilities