CVE-2013-0634
Adobe Flash Player before 10.3.183.51 and 11.x before 11.5.502.149 on Windows and Mac OS X, before 10.3.183.51 and 11.x before 11.2.202.262 on...
Basic Information
- CVE State
- PUBLISHED
- Reserved Date
- December 18, 2012
- Published Date
- February 08, 2013
- Last Updated
- August 06, 2024
- Vendor
- Adobe
- Product
- Flash Player
- Description
- Adobe Flash Player before 10.3.183.51 and 11.x before 11.5.502.149 on Windows and Mac OS X, before 10.3.183.51 and 11.x before 11.2.202.262 on Linux, before 11.1.111.32 on Android 2.x and 3.x, and before 11.1.115.37 on Android 4.x allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted SWF content, as exploited in the wild in February 2013.
- Tags
- Exploited in the Wild
- Yes (2013-02-08 11:00:00 UTC) Source
windows
linux
macos
android
metasploit_scanner
CVSS Scores
CVSS v2.0
9.3
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Exploit Status
References
http://www.adobe.com/support/security/bulletins/apsb13-04.html
http://rhn.redhat.com/errata/RHSA-2013-0243.html
http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00004.html
http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00007.html
http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00006.html
Known Exploited Vulnerability Information
| Source | Added Date |
|---|---|
| CVE | 2013-02-08 11:00:00 UTC |
Scanner Integrations
| Scanner | URL | Date Detected |
|---|---|---|
| Metasploit | https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/adobe_flash_regex_value.rb | 2025-04-29 11:01:30 UTC |
Potential Proof of Concepts
Warning: These PoCs have not been tested and could contain malware. Use at your own risk.
adobe_flash_regex_value
Type: metasploit • Created: Unknown
Metasploit module for CVE-2013-0634
Timeline
-
CVE ID Reserved
-
CVE Published to Public
-
Added to KEVIntel
-
Detected by Metasploit