Detections
Analytics
Flash Player <= 10.3.183.68 / 11.6.602.180 Multiple Vulnerabilities (APSB13-11)
critical Nessus Network Monitor Plugin ID 6751
Synopsis
The remote host contains an Adobe Flash player plug-in that may be affected by multiple vulnerabilities.Description
The remote host has a version of Adobe Flash player installed that may be affected by multiple vulnerabilities. Versions of Flash Player 11.x equal to or earlier than 11.6.602.180, or 10.x equal to or earlier than 10.3.183.68 are affected by multiple vulnerabilities:- A remote memory-corruption vulnerability exists, which may result in arbitrary code-execution. (CVE-2013-1378)
- A remote memory-corruption vulnerability, which may result in an arbitrary code-execution. (CVE-2013-1379)
- A remote memory-corruption vulnerability exists, which may result in an arbitrary code-execution. (CVE-2013-1380)
- A remote integer-overflow vulnerability exists, which may result in arbitrary code-execution. (CVE-2013-2555)
Solution
Upgrade to Flash Player 10.3.183.75 / 11.7.700.169 or later.See Also
http://www.adobe.com/support/security/bulletins/apsb13-11.html
Plugin Details
Severity: Critical
ID: 6751
Family: Web Clients
Published: 4/11/2013
Updated: 3/6/2019
Nessus ID: 65910
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: Critical
Base Score: 10
Temporal Score: 8.3
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS v3
Risk Factor: Critical
Base Score: 9.8
Temporal Score: 9.1
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:adobe:flash_player
Patch Publication Date: 4/9/2012
Vulnerability Publication Date: 3/11/2013
Reference Information
CVE: CVE-2013-1378, CVE-2013-1379, CVE-2013-1380, CVE-2013-2555