Signature Detail

HTTP: Adobe Flash Player Use-After-Free Javascript Code Execution

This signature detects attempts to exploit a known vulnerability against Adobe Flash Player. A successful attack can lead to arbitrary code execution.

Extended Description

Per: http://www.adobe.com/support/security/bulletins/apsb13-08.html 'Flash Player 11.6.602.168 and earlier versions for Windows Flash Player 11.6.602.167 and earlier versions for Macintosh Flash Player 11.2.202.270 and earlier for Linux'

Affected Products

• Adobe flash_player 10.3
• Adobe flash_player 10.3.181.14
• Adobe flash_player 10.3.181.16
• Adobe flash_player 10.3.181.22
• Adobe flash_player 10.3.181.23
• Adobe flash_player 10.3.181.26
• Adobe flash_player 10.3.181.34
• Adobe flash_player 10.3.183.10
• Adobe flash_player 10.3.183.11
• Adobe flash_player 10.3.183.15
• Adobe flash_player 10.3.183.16
• Adobe flash_player 10.3.183.18
• Adobe flash_player 10.3.183.19
• Adobe flash_player 10.3.183.20
• Adobe flash_player 10.3.183.23
• Adobe flash_player 10.3.183.25
• Adobe flash_player 10.3.183.29
• Adobe flash_player 10.3.183.43
• Adobe flash_player 10.3.183.48
• Adobe flash_player 10.3.183.5
• Adobe flash_player 10.3.183.50
• Adobe flash_player 10.3.183.51
• Adobe flash_player 10.3.183.61
• Adobe flash_player 10.3.183.63
• Adobe flash_player 10.3.183.7
• Adobe flash_player 11.2.202.223
• Adobe flash_player 11.2.202.228
• Adobe flash_player 11.2.202.229
• Adobe flash_player 11.2.202.233
• Adobe flash_player 11.2.202.235
• Adobe flash_player 11.2.202.236
• Adobe flash_player 11.2.202.238
• Adobe flash_player 11.2.202.243
• Adobe flash_player 11.2.202.251
• Adobe flash_player 11.2.202.258
• Adobe flash_player 11.2.202.261
• Adobe flash_player 11.2.202.262
• Adobe flash_player 11.2.202.270
• Adobe flash_player 11.6.602.167
• Adobe flash_player 11.6.602.168

References

• CVE: CVE-2013-0648