Lucene search
AdobeCVE-2010-2168HistoryJun 30, 2010 - 6:30 p.m.
CVE-2010-2168
2010-06-3018:30:01
CWE-399
adobe
web.nvd.nist.gov
55
cve-2010-2168
adobe reader
acrobat
arbitrary code execution
pdf
flash content
memory corruption
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
7.3
Confidence
Low
EPSS
0.104
Percentile
95.1%
Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Windows and Mac OS X, allow attackers to execute arbitrary code via a PDF file with crafted Flash content, involving the newfunction (0x44) operator and an “invalid pointer vulnerability” that triggers memory corruption, a different vulnerability than CVE-2010-1285 and CVE-2010-2201.
Affected configurations
Node
adobeacrobatMatch9.0
ORadobeacrobatMatch9.1
ORadobeacrobatMatch9.1.1
ORadobeacrobatMatch9.1.2
ORadobeacrobatMatch9.1.3
ORadobeacrobatMatch9.2
ORadobeacrobatMatch9.3
ORadobeacrobatMatch9.3.1
ORadobeacrobatMatch9.3.2
applemac_os_x
ORmicrosoftwindows
Node
adobeacrobat_readerMatch9.0
ORadobeacrobat_readerMatch9.1
ORadobeacrobat_readerMatch9.1.1
ORadobeacrobat_readerMatch9.1.2
ORadobeacrobat_readerMatch9.1.3
ORadobeacrobat_readerMatch9.2
ORadobeacrobat_readerMatch9.3
ORadobeacrobat_readerMatch9.3.1
ORadobeacrobat_readerMatch9.3.2
applemac_os_x
ORmicrosoftwindows
Node
adobeacrobatMatch8.0
ORadobeacrobatMatch8.1
ORadobeacrobatMatch8.1.1
ORadobeacrobatMatch8.1.2
ORadobeacrobatMatch8.1.3
ORadobeacrobatMatch8.1.4
ORadobeacrobatMatch8.1.5
ORadobeacrobatMatch8.1.6
ORadobeacrobatMatch8.1.7
ORadobeacrobatMatch8.2
ORadobeacrobatMatch8.2.1
ORadobeacrobatMatch8.2.2
applemac_os_x
ORmicrosoftwindows
Node
adobeacrobat_readerMatch8.0
ORadobeacrobat_readerMatch8.1
ORadobeacrobat_readerMatch8.1.1
ORadobeacrobat_readerMatch8.1.2
ORadobeacrobat_readerMatch8.1.4
ORadobeacrobat_readerMatch8.1.5
ORadobeacrobat_readerMatch8.1.6
ORadobeacrobat_readerMatch8.1.7
ORadobeacrobat_readerMatch8.2.1
ORadobeacrobat_readerMatch8.2.2
applemac_os_x
ORmicrosoftwindows
| Vendor | Product | Version | CPE |
|---|---|---|---|
| adobe | acrobat | 9.1 | cpe:/a:adobe:acrobat:9.1::: |
| adobe | acrobat | 9.1.3 | cpe:/a:adobe:acrobat:9.1.3::: |
| adobe | acrobat | 9.3.1 | cpe:/a:adobe:acrobat:9.3.1::: |
| adobe | acrobat | 9.3.2 | cpe:/a:adobe:acrobat:9.3.2::: |
| adobe | acrobat | 9.1.1 | cpe:/a:adobe:acrobat:9.1.1::: |
| adobe | acrobat | 9.0 | cpe:/a:adobe:acrobat:9.0::: |
| adobe | acrobat | 9.2 | cpe:/a:adobe:acrobat:9.2::: |
| adobe | acrobat | 9.1.2 | cpe:/a:adobe:acrobat:9.1.2::: |
| adobe | acrobat | 9.3 | cpe:/a:adobe:acrobat:9.3::: |
Related
prion
prion
Memory corruption
2010-06-30 18:30:00
Memory corruption
2010-06-30 18:30:00
Memory corruption
2010-06-30 18:30:00
ubuntucve
ubuntucve
cvelist
cvelist
nvd
nvd
cve
cve
CVE-2010-1285
2010-06-30 18:30:01
CVE-2010-2201
2010-06-30 18:30:01
seebug
seebug
Adobe Acrobat Reader and Flash - 'newfunction' Remote Code Execution Vulnerability
2014-07-01 00:00:00
Adobe Acrobat and Reader - "pushstring" Memory Corruption
2014-07-01 00:00:00
packetstorm
packetstorm
Month Of Abysssec Undisclosed Bugs - Adobe Acrobat Reader
2010-09-24 00:00:00
Month Of Abysssec Undisclosed Bugs - Adobe Acrobat / Reader
2010-09-13 00:00:00
exploitpack
exploitpack
Adobe Acrobat Reader and Flash - newfunction Remote Code Execution
2010-09-23 00:00:00
Adobe Acrobat and Reader - pushstring Memory Corruption
2010-09-12 00:00:00
securityvulns
securityvulns
checkpoint_advisories
checkpoint_advisories
exploitdb
exploitdb
Adobe Acrobat and Reader - 'pushstring' Memory Corruption
2010-09-12 00:00:00
openvas
openvas
Adobe Reader Multiple Vulnerabilities (Jul 2010) - Linux
2010-07-12 00:00:00
Adobe Acrobat and Reader Multiple Vulnerabilities (Jul 2010) - Windows
2010-07-12 00:00:00
SuSE Update for acroread SUSE-SA:2010:029
2010-07-12 00:00:00
nessus
nessus
Adobe Acrobat < 9.3.3 / 8.2.3 Multiple Vulnerabilities (APSB10-15)
2010-06-30 00:00:00
Adobe Reader < 9.3.3 / 8.2.3 Multiple Vulnerabilities (APSB10-15)
2010-06-30 00:00:00
RHEL 4 / 5 : acroread (RHSA-2010:0503)
2010-07-28 00:00:00
redhat
redhat
(RHSA-2010:0503) Critical: acroread security update
2010-06-30 00:00:00
suse
suse
remote code execution in acroread
2010-07-08 11:59:38
gentoo
gentoo
Adobe Reader: Multiple vulnerabilities
2010-09-07 00:00:00
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
7.3
Confidence
Low
EPSS
0.104
Percentile
95.1%
Related for CVE-2010-2168