Adobe AIR for Mac 3.x <= Multiple Vulnerabilities (APSB13-05)

High Nessus Plugin ID 64585


The remote Mac OS X host contains a version of Adobe AIR that is affected by multiple vulnerabilities.


According to its version, the instance of Adobe AIR 3.x on the remote Mac OS X host is or earlier. It is, therefore, reportedly affected by multiple vulnerabilities :

- Several unspecified issues exist that could lead to buffer overflows and arbitrary code execution.
(CVE-2013-1372, CVE-2013-0645, CVE-2013-1373, CVE-2013-1369, CVE-2013-1370, CVE-2013-1366, CVE-2013-1365, CVE-2013-1368, CVE-2013-0642, CVE-2013-1367)

- Several unspecified use-after-free vulnerabilities exist that could lead to remote code execution. (CVE-2013-0649, CVE-2013-1374, CVE-2013-0644)

- Two unspecified issues exist that could lead to memory corruption and arbitrary code execution. (CVE-2013-0638, CVE-2013-0647)

- An unspecified information disclosure vulnerability exists. (CVE-2013-0637)

- An unspecified integer overflow vulnerability exists.


Upgrade to Adobe AIR or later.

See Also

Plugin Details

Severity: High

ID: 64585

File Name: macosx_adobe_air_3_6_0_597.nasl

Version: $Revision: 1.7 $

Type: local

Agent: macosx

Published: 2013/02/13

Modified: 2016/07/28

Dependencies: 56960

Risk Information

Risk Factor: High


Base Score: 9.3

Temporal Score: 7.7

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:F/RL:OF/RC:ND

Vulnerability Information

CPE: cpe:/a:adobe:air

Required KB Items: MacOSX/Adobe_AIR/Version

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2013/02/12

Vulnerability Publication Date: 2013/02/12

Reference Information

CVE: CVE-2013-0637, CVE-2013-0638, CVE-2013-0639, CVE-2013-0642, CVE-2013-0644, CVE-2013-0645, CVE-2013-0647, CVE-2013-0649, CVE-2013-1365, CVE-2013-1366, CVE-2013-1367, CVE-2013-1368, CVE-2013-1369, CVE-2013-1370, CVE-2013-1372, CVE-2013-1373, CVE-2013-1374

BID: 57912, 57916, 57917, 57918, 57919, 57920, 57921, 57922, 57923, 57924, 57925, 57926, 57927, 57929, 57930, 57932, 57933

OSVDB: 90095, 90096, 90097, 90098, 90099, 90100, 90101, 90102, 90103, 90104, 90105, 90106, 90107, 90108, 90109, 90110, 90111