Oval Definition:oval:org.mitre.oval:def:20081
Revision Date:2015-08-03Version:41
Title:The Firefox sandbox in Adobe Flash Player before 10.3.183.67 and 11.x before 11.6.602.171 on Windows does not properly restrict privileges, which makes it easier for remote attackers to execute arbitrary code via crafted SWF content
Description:The Firefox sandbox in Adobe Flash Player before 10.3.183.67 and 11.x before 11.6.602.171 on Windows and Mac OS X, and before 10.3.183.67 and 11.x before 11.2.202.273 on Linux, does not properly restrict privileges, which makes it easier for remote attackers to execute arbitrary code via crafted SWF content, as exploited in the wild in February 2013.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2013-0643
Platform(s):Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows 8.1
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows Vista
Microsoft Windows XP
Product(s):Adobe Flash Player
Definition Synopsis
  • Determine if the version of Adobe Flash Player is less than or equal 11.6.602.168 and is greater than or equal 11.0
  • Adobe Flash Player 11 is installed
  • AND Determine if the version of Adobe Flash Player is less than or equal 11.6.602.168
  • AND Determine if the version of Adobe Flash Player is greater than or equal 11.0
  • OR Determine if the version of Adobe Flash Player is less than or equal 10.3.183.63 and is greater than or equal 10.0
  • Adobe Flash Player 10 is installed
  • AND Determine if the version of Adobe Flash Player is less than or equal 10.3.183.63
  • AND Determine if the version of Adobe Flash Player is greater than or equal 10.0
  • OR Flash.ocx section
  • ActiveX Control is installed
  • AND Flash.ocx versions section
  • Flash.ocx 11 section
  • Determine if the version of Flash.ocx is less than or equal 11.6.602.168
  • AND Determine if the version of Flash.ocx is greater than or equal 11.0
  • OR Flash.ocx 10 section
  • Determine if the version of Flash.ocx is less than or equal 10.3.183.63
  • AND Determine if the version of Flash.ocx is greater than or equal 10.0
    • BACK