Intrusion Prevention

Adobe.Flash.Player.Unload.Memory.Corruption

Description

This indicates an attack attempt to exploit a memory corruption vulnerability in Adobe Flash player.
The vulnerability is due to an error after Adobe Flash plug-in is unloaded. This vulnerability affects only the Safari and Opera web browsers. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application.

Affected Products

Adobe Flash Player 11.9.900.152 and prior versions
Adobe Flash Player 11.2.202.327 and prior versions for Linux
Adobe AIR 3.9.0.1210 and prior versions for Windows and Macintosh
Adobe AIR 3.9.0.1210 and prior versions for Android
Adobe AIR 3.9.0.1210 SDK and prior versions
Adobe AIR 3.9.0.1210 SDK & Compiler and prior versions

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
http://helpx.adobe.com/security/products/flash-player/apsb13-28.html

CVE References

CVE-2013-5332