APP: Adobe Flash Player RTMP Message Handling Remote Code Execution
This signature detects attempts to exploit a known vulnerability against Adobe Flash Player. A successful attack can lead to arbitrary code execution.
Extended Description
Integer overflow in Adobe Flash Player before 10.3.183.75 and 11.x before 11.7.700.169 on Windows and Mac OS X, before 10.3.183.75 and 11.x before 11.2.202.280 on Linux, before 11.1.111.50 on Android 2.x and 3.x, and before 11.1.115.54 on Android 4.x; Adobe AIR before 3.7.0.1530; and Adobe AIR SDK & Compiler before 3.7.0.1530 allows remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by VUPEN during a Pwn2Own competition at CanSecWest 2013.
Affected Products
Redhat enterprise_linux_server
Short Name
APP:ADOBE-FLASH-RTMP-RCE
Severity
Major
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
Adobe CVE-2013-2555 Code Execution Flash Handling Message Player RTMP Remote bid:58396
Release Date
04/22/2013
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3590
Port
TCP/1935
False Positive
Unknown
Vendors
Opensuse
Suse
Redhat
CVSS Score
10.0