ubuntu · CVE-2013-0643

Quick triage

Priority: medium Published: 2013-02-27 00:55:00 UTC Updated: 2025-08-25 20:45:16 UTC

View at Official ubuntu advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2013-0643 medium priority: Ubuntu including 2 source packages (adobe-flashplugin, flashplugin-nonfree), 12 status rows across 6 suites (hardy, lucid, oneiric, precise, quantal, upstream): released 10, ignored 2.

Description:

The Firefox sandbox in Adobe Flash Player before 10.3.183.67 and 11.x before 11.6.602.171 on Windows and Mac OS X, and before 10.3.183.67 and 11.x before 11.2.202.273 on Linux, does not properly restrict privileges, which makes it easier for remote attackers to execute arbitrary code via crafted SWF content, as exploited in the wild in February 2013.

cvelogic Threat Intelligence