CVE-2013-3345
CVSS10.0
发布时间 :2013-07-10 06:55:02
修订时间 :2013-08-22 02:53:39
NMCOPS    

[原文]Adobe Flash Player before 11.7.700.232 and 11.8.x before 11.8.800.94 on Windows and Mac OS X, before 11.2.202.297 on Linux, before 11.1.111.64 on Android 2.x and 3.x, and before 11.1.115.69 on Android 4.x allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.


[CNNVD]Adobe Flash Player 缓冲区溢出漏洞(CNNVD-201307-204)

        Adobe Flash Player是美国奥多比(Adobe)公司的一款跨平台、基于浏览器的多媒体程序播放器产品。该产品具有支持跨屏幕和浏览器查看应用程序、内容和视频的功能。
        Adobe Flash Player中存在安全漏洞。攻击者可利用该漏洞执行任意代码或造成拒绝服务(内存损坏)。以下版本中存在漏洞:基于Windows平台上的Adobe Flash Player 11.7.700.224及之前的版本和11.8.800.94之前的11.8.x版本,基于Mac OS X平台上的Adobe Flash Player 11.7.700.225及之前的版本和11.8.800.94之前的11.8.x版本,基于Linux平台上的Adobe Flash Player 11.2.202.291及之前的版本,基于Android 2.x和3.x版本平台上的Adobe Flash Player 11.1.115.63及之前的版本,基于Android 4.x版本平台上的Adobe Flash Player 11.1.111.59及之前的版本。

- CVSS (基础分值)

CVSS分值: 10 [严重(HIGH)]
机密性影响: COMPLETE [完全的信息泄露导致所有系统文件暴露]
完整性影响: COMPLETE [系统完整性可被完全破坏]
可用性影响: COMPLETE [可能导致系统完全宕机]
攻击复杂度: LOW [漏洞利用没有访问限制 ]
攻击向量: NETWORK [攻击者不需要获取内网访问权或本地访问权]
身份认证: NONE [漏洞利用无需身份认证]

- CWE (弱点类目)

CWE-119 [内存缓冲区边界内操作的限制不恰当]

- CPE (受影响的平台与产品)

cpe:/a:adobe:flash_player:11.2.202.262Adobe Flash Player 11.2.202.262
cpe:/a:adobe:flash_player:11.6.602.180Adobe Flash Player 11.6.602.180
cpe:/a:adobe:flash_player:11.2.202.261Adobe Flash Player 11.2.202.261
cpe:/a:adobe:flash_player:11.1.115.48
cpe:/a:adobe:flash_player:11.1.111.8Adobe Flash Player 11.1.111.8
cpe:/a:adobe:flash_player:11.3.300.268Adobe Flash Player 11.3.300.268
cpe:/a:adobe:flash_player:11.2.202.238Adobe Flash Player 11.2.202.238
cpe:/a:adobe:flash_player:11.1.111.50
cpe:/a:adobe:flash_player:11.2.202.223Adobe Flash Player 11.2.202.223
cpe:/a:adobe:flash_player:11.2.202.235Adobe Flash Player 11.2.202.235
cpe:/a:adobe:flash_player:11.2.202.236Adobe Flash Player 11.2.202.236
cpe:/a:adobe:flash_player:11.7.700.224
cpe:/a:adobe:flash_player:11.7.700.225
cpe:/a:adobe:flash_player:11.1.111.54
cpe:/a:adobe:flash_player:11.1.111.44
cpe:/a:adobe:flash_player:11.2.202.251Adobe Flash Player 11.2.202.251
cpe:/a:adobe:flash_player:11.1.115.34Adobe Flash Player 11.1.115.34
cpe:/a:adobe:flash_player:11.3.300.265Adobe Flash Player 11.3.300.265
cpe:/a:adobe:flash_player:11.2.202.228Adobe Flash Player 11.2.202.228
cpe:/a:adobe:flash_player:11.1.102.63Adobe Flash Player 11.1.102.63
cpe:/a:adobe:flash_player:11.1.102.62Adobe Flash Player 11.1.102.62
cpe:/a:adobe:flash_player:11.3.300.262Adobe Flash Player 11.3.300.262
cpe:/a:adobe:flash_player:11.5.502.136Adobe Flash Player 11.5.502.136
cpe:/a:adobe:flash_player:11.5.502.135Adobe Flash Player 11.5.502.135
cpe:/a:adobe:flash_player:11.6.602.171Adobe Flash Player 11.6.602.171
cpe:/a:adobe:flash_player:11.2.202.291
cpe:/a:adobe:flash_player:11.3.300.271Adobe Flash Player 11.3.300.271
cpe:/a:adobe:flash_player:11.3.300.270Adobe Flash Player 11.3.300.270
cpe:/a:adobe:flash_player:11.7.700.202
cpe:/a:adobe:flash_player:11.3.300.273Adobe Flash Player 11.3.300.273
cpe:/a:adobe:flash_player:11.2.202.280
cpe:/a:adobe:flash_player:11.1.102.55Adobe Flash Player 11.1.102.55
cpe:/a:adobe:flash_player:11.2.202.285
cpe:/a:adobe:flash_player:11.1.102.59Adobe Flash Player 11.1.102.59
cpe:/a:adobe:flash_player:11.2.202.243Adobe Flash Player 11.2.202.243
cpe:/a:adobe:flash_player:11.1.115.54
cpe:/a:adobe:flash_player:11.1.115.59
cpe:/a:adobe:flash_player:11.2.202.258Adobe Flash Player 11.2.202.258
cpe:/a:adobe:flash_player:11.4.402.265Adobe Flash Player 11.4.4.02.265
cpe:/a:adobe:flash_player:11.1.115.58
cpe:/a:adobe:flash_player:11.1Adobe Flash Player 11.1
cpe:/a:adobe:flash_player:11.0Adobe Flash Player 11.0
cpe:/a:adobe:flash_player:11.1.115.7Adobe Flash Player 11.1.115.7
cpe:/a:adobe:flash_player:11.6.602.167Adobe Flash Player 11.6.602.167
cpe:/a:adobe:flash_player:11.3.300.257Adobe Flash Player 11.3.300.257
cpe:/a:adobe:flash_player:11.6.602.168Adobe Flash Player 11.6.602.168
cpe:/a:adobe:flash_player:11.5.502.146Adobe Flash Player 11.5.502.146
cpe:/a:adobe:flash_player:11.4.402.287Adobe Flash Player 11.4.402.287
cpe:/a:adobe:flash_player:11.5.502.149Adobe Flash Player 11.5.502.149
cpe:/a:adobe:flash_player:11.2.202.233Adobe Flash Player 11.2.202.233
cpe:/a:adobe:flash_player:11.2.202.270Adobe Flash Player 11.2.202.270
cpe:/a:adobe:flash_player:11.2.202.275
cpe:/a:adobe:flash_player:11.2.202.273Adobe Flash Player 11.2.202.273
cpe:/a:adobe:flash_player:11.0.1.153Adobe Flash Player 11.0.1.153
cpe:/a:adobe:flash_player:11.1.115.63
cpe:/a:adobe:flash_player:11.7.700.169
cpe:/a:adobe:flash_player:11.5.502.110Adobe Flash Player 11.5.502.110
cpe:/a:adobe:flash_player:11.0.1.152Adobe Flash Player 11.0.1.152
cpe:/a:adobe:flash_player:11.4.402.278Adobe Flash Player 11.4.402.278

- OVAL (用于检测的技术细节)

oval:org.mitre.oval:def:19528Adobe Flash Player before 11.7.700.232 and 11.8.x before 11.8.800.94 on Windows allows attackers to execute arbitrary code or cause a denial...
oval:org.mitre.oval:def:20942RHSA-2013:1035: flash-plugin security update (Critical)
oval:org.mitre.oval:def:23727ELSA-2013:1035: flash-plugin security update (Critical)
oval:org.mitre.oval:def:25598SUSE-SU-2013:1213-1 -- Security update for flash-player
*OVAL详细的描述了检测该漏洞的方法,你可以从相关的OVAL定义中找到更多检测该漏洞的技术细节。

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3345
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-3345
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-201307-204
(官方数据源) CNNVD

- 其它链接及资源

http://www.adobe.com/support/security/bulletins/apsb13-17.html
(VENDOR_ADVISORY)  CONFIRM  http://www.adobe.com/support/security/bulletins/apsb13-17.html
http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00021.html
(UNKNOWN)  SUSE  openSUSE-SU-2013:1192

- 漏洞信息

Adobe Flash Player 缓冲区溢出漏洞
危急 缓冲区溢出
2013-07-18 00:00:00 2013-07-18 00:00:00
远程  
        Adobe Flash Player是美国奥多比(Adobe)公司的一款跨平台、基于浏览器的多媒体程序播放器产品。该产品具有支持跨屏幕和浏览器查看应用程序、内容和视频的功能。
        Adobe Flash Player中存在安全漏洞。攻击者可利用该漏洞执行任意代码或造成拒绝服务(内存损坏)。以下版本中存在漏洞:基于Windows平台上的Adobe Flash Player 11.7.700.224及之前的版本和11.8.800.94之前的11.8.x版本,基于Mac OS X平台上的Adobe Flash Player 11.7.700.225及之前的版本和11.8.800.94之前的11.8.x版本,基于Linux平台上的Adobe Flash Player 11.2.202.291及之前的版本,基于Android 2.x和3.x版本平台上的Adobe Flash Player 11.1.115.63及之前的版本,基于Android 4.x版本平台上的Adobe Flash Player 11.1.111.59及之前的版本。

- 公告与补丁

        目前厂商已经发布了升级补丁以修复此安全问题,补丁获取链接:
        http://www.adobe.com/support/security/bulletins/apsb13-17.html

- 漏洞信息 (F122345)

Red Hat Security Advisory 2013-1035-01 (PacketStormID:F122345)
2013-07-10 00:00:00
Red Hat  
advisory,web,arbitrary,vulnerability
linux,redhat
CVE-2013-3344,CVE-2013-3345,CVE-2013-3347
[点击下载]

Red Hat Security Advisory 2013-1035-01 - The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. This update fixes three vulnerabilities in Adobe Flash Player. These vulnerabilities are detailed in the Adobe Security bulletin APSB13-17, listed in the References section. Specially-crafted SWF content could cause flash-plugin to crash or, potentially, execute arbitrary code when a victim loads a page containing the malicious SWF content. All users of Adobe Flash Player should install this updated package, which upgrades Flash Player to version 11.2.202.297.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

=====================================================================
                   Red Hat Security Advisory

Synopsis:          Critical: flash-plugin security update
Advisory ID:       RHSA-2013:1035-01
Product:           Red Hat Enterprise Linux Supplementary
Advisory URL:      https://rhn.redhat.com/errata/RHSA-2013-1035.html
Issue date:        2013-07-10
CVE Names:         CVE-2013-3344 CVE-2013-3345 CVE-2013-3347 
=====================================================================

1. Summary:

An updated Adobe Flash Player package that fixes three security issues is
now available for Red Hat Enterprise Linux 5 and 6 Supplementary.

The Red Hat Security Response Team has rated this update as having critical
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux Desktop Supplementary (v. 5) - i386, x86_64
Red Hat Enterprise Linux Desktop Supplementary (v. 6) - i386, x86_64
Red Hat Enterprise Linux Server Supplementary (v. 5) - i386, x86_64
Red Hat Enterprise Linux Server Supplementary (v. 6) - i386, x86_64
Red Hat Enterprise Linux Workstation Supplementary (v. 6) - i386, x86_64

3. Description:

The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash
Player web browser plug-in.

This update fixes three vulnerabilities in Adobe Flash Player. These
vulnerabilities are detailed in the Adobe Security bulletin APSB13-17,
listed in the References section. Specially-crafted SWF content could cause
flash-plugin to crash or, potentially, execute arbitrary code when a victim
loads a page containing the malicious SWF content. (CVE-2013-3344,
CVE-2013-3345, CVE-2013-3347)

All users of Adobe Flash Player should install this updated package, which
upgrades Flash Player to version 11.2.202.297.

4. Solution:

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/site/articles/11258

5. Bugs fixed (http://bugzilla.redhat.com/):

982749 - CVE-2013-3344 CVE-2013-3345 CVE-2013-3347 flash-plugin: Multiple code execution flaws (APSB13-17)

6. Package List:

Red Hat Enterprise Linux Desktop Supplementary (v. 5):

i386:
flash-plugin-11.2.202.297-1.el5.i386.rpm

x86_64:
flash-plugin-11.2.202.297-1.el5.i386.rpm

Red Hat Enterprise Linux Server Supplementary (v. 5):

i386:
flash-plugin-11.2.202.297-1.el5.i386.rpm

x86_64:
flash-plugin-11.2.202.297-1.el5.i386.rpm

Red Hat Enterprise Linux Desktop Supplementary (v. 6):

i386:
flash-plugin-11.2.202.297-1.el6.i686.rpm

x86_64:
flash-plugin-11.2.202.297-1.el6.i686.rpm

Red Hat Enterprise Linux Server Supplementary (v. 6):

i386:
flash-plugin-11.2.202.297-1.el6.i686.rpm

x86_64:
flash-plugin-11.2.202.297-1.el6.i686.rpm

Red Hat Enterprise Linux Workstation Supplementary (v. 6):

i386:
flash-plugin-11.2.202.297-1.el6.i686.rpm

x86_64:
flash-plugin-11.2.202.297-1.el6.i686.rpm

These packages are GPG signed by Red Hat for security.  Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/#package

7. References:

https://www.redhat.com/security/data/cve/CVE-2013-3344.html
https://www.redhat.com/security/data/cve/CVE-2013-3345.html
https://www.redhat.com/security/data/cve/CVE-2013-3347.html
https://access.redhat.com/security/updates/classification/#critical
http://www.adobe.com/support/security/bulletins/apsb13-17.html

8. Contact:

The Red Hat security contact is <secalert@redhat.com>.  More contact
details at https://access.redhat.com/security/team/contact/

Copyright 2013 Red Hat, Inc.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.4 (GNU/Linux)

iD8DBQFR3RcFXlSAg2UNWIIRAibqAJ4ueutMxMCpS7cVyM01x68cJzonJwCgwGMI
wOssXF1MQp0avKW9aWq5yP8=
=2PBY
-----END PGP SIGNATURE-----


--
RHSA-announce mailing list
RHSA-announce@redhat.com
https://www.redhat.com/mailman/listinfo/rhsa-announce
    

- 漏洞信息

94989
Adobe Flash Player Unspecified Memory Corruption
Context Dependent Input Manipulation
Loss of Integrity Upgrade
Exploit Unknown Vendor Verified, Coordinated Disclosure

- 漏洞描述

Adobe Flash Player contains an unspecified flaw that is triggered as user-supplied input is not properly sanitized. This may allow a context-dependent attacker to corrupt memory and cause a denial of service or potentially execute arbitrary code.

- 时间线

2013-07-09 Unknow
Unknow 2013-07-09

- 解决方案

It has been reported that this issue has been fixed. Upgrade to version 11.8.800.94 (for Windows / Mac), 11.2.202.297 (for Linux), 11.1.115.69 (for Android 4.x), 11.1.111.64 (for Android 2.x and 3.x), or higher, to address this vulnerability.

- 相关参考

- 漏洞作者

Unknown or Incomplete

- 漏洞信息

Adobe Flash Player CVE-2013-3345 Unspecified Memory Corruption Vulnerability
Input Validation Error 61045
Yes No
2013-07-09 12:00:00 2013-07-09 12:00:00
Mateusz Jurczyk, Gynvael Coldwind and Fermin Serna of the Google Security Team

- 受影响的程序版本

Adobe Flash Player for Android 11.1.102.59
Adobe Flash Player 10.1.53 .64
Adobe Flash Player 10.1.51 .66
Adobe Flash Player 10.0.45 2
Adobe Flash Player 10.0.45 2
Adobe Flash Player 10.0.45 2
Adobe Flash Player 10.0.32 18
Adobe Flash Player 10.0.22 .87
Adobe Flash Player 10.0.15 .3
Adobe Flash Player 10.0.12 .36
Adobe Flash Player 10.0.12 .35
Adobe Flash Player 9.0.262
Adobe Flash Player 9.0.246 0
Adobe Flash Player 9.0.152 .0
Adobe Flash Player 9.0.151 .0
Adobe Flash Player 9.0.124 .0
Adobe Flash Player 9.0.48.0
Adobe Flash Player 9.0.47.0
Adobe Flash Player 9.0.45.0
Adobe Flash Player 9.0.31.0
Adobe Flash Player 9.0.289.0
Adobe Flash Player 9.0.283.0
Adobe Flash Player 9.0.280
Adobe Flash Player 9.0.277.0
Adobe Flash Player 9.0.262.0
Adobe Flash Player 9.0.260.0
Adobe Flash Player 9.0.246.0
Adobe Flash Player 9.0.159.0
Adobe Flash Player 9.0.155.0
Adobe Flash Player 9.0.115.0
Adobe Flash Player 11.2.202.235
Adobe Flash Player 11.2.202.233
Adobe Flash Player 11.2.202.229
Adobe Flash Player 11.2.202.228
Adobe Flash Player 11.2.202.223
Adobe Flash Player 11.1.115.8
Adobe Flash Player 11.1.115.7
Adobe Flash Player 11.1.115.6
Adobe Flash Player 11.1.112.61
Adobe Flash Player 11.1.111.9
Adobe Flash Player 11.1.111.8
Adobe Flash Player 11.1.111.7
Adobe Flash Player 11.1.111.6
Adobe Flash Player 11.1.111.5
Adobe Flash Player 11.1.102.63
Adobe Flash Player 11.1.102.62
Adobe Flash Player 11.1.102.55
Adobe Flash Player 11.1.102.228
Adobe Flash Player 11.0.1.152
Adobe Flash Player 10.3.186.7
Adobe Flash Player 10.3.186.6
Adobe Flash Player 10.3.186.3
Adobe Flash Player 10.3.186.2
Adobe Flash Player 10.3.185.25
Adobe Flash Player 10.3.185.23
Adobe Flash Player 10.3.185.22
Adobe Flash Player 10.3.185.21
Adobe Flash Player 10.3.183.7
Adobe Flash Player 10.3.183.5
Adobe Flash Player 10.3.183.4
Adobe Flash Player 10.3.183.10
Adobe Flash Player 10.3.181.34
Adobe Flash Player 10.3.181.26
Adobe Flash Player 10.3.181.23
Adobe Flash Player 10.3.181.22
Adobe Flash Player 10.3.181.16
Adobe Flash Player 10.3.181.14
Adobe Flash Player 10.2.159.1
Adobe Flash Player 10.2.157.51
Adobe Flash Player 10.2.156.12
Adobe Flash Player 10.2.154.28
Adobe Flash Player 10.2.154.27
Adobe Flash Player 10.2.154.25
Adobe Flash Player 10.2.154.24
Adobe Flash Player 10.2.154.18
Adobe Flash Player 10.2.154.13
Adobe Flash Player 10.2.153.1
Adobe Flash Player 10.2.152.33
Adobe Flash Player 10.2.152.32
Adobe Flash Player 10.2.152.21
Adobe Flash Player 10.2.152
Adobe Flash Player 10.1.95.2
Adobe Flash Player 10.1.95.1
Adobe Flash Player 10.1.92.8
Adobe Flash Player 10.1.92.10
Adobe Flash Player 10.1.92.10
Adobe Flash Player 10.1.85.3
Adobe Flash Player 10.1.82.76
Adobe Flash Player 10.1.52.15
Adobe Flash Player 10.1.52.14.1
Adobe Flash Player 10.1.106.16
Adobe Flash Player 10.1.105.6
Adobe Flash Player 10.1.102.65
Adobe Flash Player 10.1.102.64
Adobe Flash Player 10.0.42.34
Adobe Flash Player 10.0.32.18

- 漏洞讨论

Adobe Flash Player is prone to an unspecified memory-corruption vulnerability.

Note: This issue was previously covered in BID 61038 (Adobe Flash Player APSB13-17 Multiple Remote Code Execution Vulnerabilities), but has been moved to its own record for better documentation.

Attackers can exploit this issue to execute arbitrary code within the context of the user running the affected application. Failed attempts will likely cause a denial-of-service condition.

- 漏洞利用

Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: vuldb@securityfocus.com.

- 解决方案

Updates are available. Please see the references or vendor advisory for more information.

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站