Adobe Air Remote Code Execution Vulnerability -June13 (Mac OS X) Network Vulnerability

Summary

This host is installed with Adobe Air and is prone to remote code execution vulnerability.

Impact

Successful exploitation will allow remote attackers to execute arbitrary code on the target system or cause a denial of service (memory corruption) via unspecified vectors. Impact Level: System/Application

Solution

Update to Adobe Air version 3.7.0.2100 or later For updates refer to http://get.adobe.com/air

Insight

Unspecified flaw due to improper sanitization of user-supplied input.

Affected

Adobe Air 3.7.0.1860 and earlier on Mac OS X

References

http://osvdb.org/94128
http://secunia.com/advisories/53751
http://www.adobe.com/support/security/bulletins/apsb13-16.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2013-3343

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe AIR Multiple Vulnerabilities -01 Feb13 (Windows)
Adobe Extension Manager CS5 Insecure Library Loading Vulnerability (Win)
Adobe Acrobat Multiple Vulnerabilities-01 Sep14 (Windows)
Adobe Acrobat and Reader PDF Handling Code Execution Vulnerability (Mac OS X)
Adobe Flash Media Server multiple vulnerabilities

Take action and discover your vulnerabilities