Added |
CPE Configuration |
|
AND
OR
*cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:* versions from (including) 11.0 up to (excluding) 11.7.700.257
*cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:* versions from (including) 11.8 up to (excluding) 11.8.800.175
*cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:* versions from (including) 11.9 up to (excluding) 11.9.900.700
OR
cpe:2.3:o:apple:mac_os_x:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
|
Changed |
CPE Configuration |
Record truncated, showing 500 of 4286 characters.
View Entire Change Record
AND
OR
*cpe:2.3:a:adobe:flash_player:11.0:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:flash_player:11.0.1.152:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:flash_player:11.0.1.153:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:flash_player:11.1:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:flash_player:11.1.102.55:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:flash_player:11.1.102.59:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:flash_player:11.1.102.62:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:flash_player:11
|
AND
OR
*cpe:2.3:a:adobe:flash_player:*:*:*:*:*:*:*:* versions from (including) 11.0 up to (excluding) 11.2.202.332
OR
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
|
Changed |
CPE Configuration |
Record truncated, showing 500 of 2547 characters.
View Entire Change Record
AND
OR
*cpe:2.3:a:adobe:flash_player:11.0:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:flash_player:11.0.1.152:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:flash_player:11.0.1.153:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:flash_player:11.1:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:flash_player:11.1.102.55:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:flash_player:11.1.102.59:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:flash_player:11.1.102.62:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:flash_player:11
|
OR
*cpe:2.3:a:adobe:air:*:*:*:*:*:*:*:* versions up to (excluding) 3.9.0.1380
*cpe:2.3:a:adobe:air_sdk:*:*:*:*:*:*:*:* versions up to (excluding) 3.9.0.1380
|
Removed |
CPE Configuration |
Record truncated, showing 500 of 4283 characters.
View Entire Change Record
AND
OR
*cpe:2.3:a:adobe:flash_player:11.0:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:flash_player:11.0.1.152:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:flash_player:11.0.1.153:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:flash_player:11.1:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:flash_player:11.1.102.55:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:flash_player:11.1.102.59:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:flash_player:11.1.102.62:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:flash_player:11
|
|
Removed |
CPE Configuration |
Record truncated, showing 500 of 1418 characters.
View Entire Change Record
OR
*cpe:2.3:a:adobe:adobe_air:3.0.0.408:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:adobe_air:3.0.0.4080:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:adobe_air:3.1.0.485:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:adobe_air:3.1.0.488:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:adobe_air:3.1.0.4880:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:adobe_air:3.2.0.207:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:adobe_air:3.2.0.2070:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:adobe_air:3.3.0.3670:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:adobe_air:3.4.0.2540:*:
|
|
Removed |
CPE Configuration |
Record truncated, showing 500 of 1244 characters.
View Entire Change Record
OR
*cpe:2.3:a:adobe:adobe_air_sdk:3.0.0.4080:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:adobe_air_sdk:3.1.0.488:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:adobe_air_sdk:3.2.0.2070:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:adobe_air_sdk:3.3.0.3650:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:adobe_air_sdk:3.3.0.3690:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:adobe_air_sdk:3.4.0.2540:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:adobe_air_sdk:3.4.0.2710:*:*:*:*:*:*:*
*cpe:2.3:a:adobe:adobe_air_sdk:3.5.0.600:*:*:*:*:*:*:*
*cpe:2
|
|
Changed |
CVSS V2 |
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
|
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
|
Added |
CVSS V2 Metadata |
|
Victim must voluntarily interact with attack mechanism
|
Added |
CWE |
|
CWE-94
|
Removed |
CWE |
CWE-119
|
|
Added |
Evaluator Description |
|
Per: http://helpx.adobe.com/security/products/flash-player/apsb13-28.html
"Adobe is aware of reports that an exploit designed to trick the user into opening a Microsoft Word document with malicious Flash (.swf) content exists for CVE-2013-5331."
|
Changed |
Reference Type |
http://lists.opensuse.org/opensuse-security-announce/2013-12/msg00008.html No Types Assigned
|
http://lists.opensuse.org/opensuse-security-announce/2013-12/msg00008.html Mailing List, Third Party Advisory
|
Changed |
Reference Type |
http://lists.opensuse.org/opensuse-updates/2013-12/msg00075.html No Types Assigned
|
http://lists.opensuse.org/opensuse-updates/2013-12/msg00075.html Mailing List, Third Party Advisory
|
Changed |
Reference Type |
http://lists.opensuse.org/opensuse-updates/2013-12/msg00084.html No Types Assigned
|
http://lists.opensuse.org/opensuse-updates/2013-12/msg00084.html Mailing List, Third Party Advisory
|
Changed |
Reference Type |
http://rhn.redhat.com/errata/RHSA-2013-1818.html No Types Assigned
|
http://rhn.redhat.com/errata/RHSA-2013-1818.html Third Party Advisory
|