Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2010-2862
HistoryAug 05, 2010 - 6:17 p.m.

CVE-2010-2862

2010-08-0518:17:58
CWE-189
[email protected]
web.nvd.nist.gov
6

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.7

Confidence

Low

EPSS

0.91

Percentile

98.9%

JSON

Integer overflow in CoolType.dll in Adobe Reader 8.2.3 and 9.3.3, and Acrobat 9.3.3, allows remote attackers to execute arbitrary code via a TrueType font with a large maxCompositePoints value in a Maximum Profile (maxp) table.

Affected configurations

Nvd
Node
adobeacrobat_readerMatch8.2.3
OR
adobeacrobat_readerMatch9.3.3
Node
adobeacrobatMatch9.3.3
VendorProductVersionCPE
adobeacrobat_reader8.2.3cpe:2.3:a:adobe:acrobat_reader:8.2.3:*:*:*:*:*:*:*
adobeacrobat_reader9.3.3cpe:2.3:a:adobe:acrobat_reader:9.3.3:*:*:*:*:*:*:*
adobeacrobat9.3.3cpe:2.3:a:adobe:acrobat:9.3.3:*:*:*:*:*:*:*

Related

checkpoint_advisories 2
cvelist 1
threatpost 5
cve 1
exploitdb 1
prion 1
openvas 6
nessus 10
redhat 1
suse 1
checkpoint_advisories
checkpoint_advisories
Adobe Reader cooltype.dll Remote Code Execution (APSB10-17; CVE-2010-2862)
2010-08-19 00:00:00
Adobe Reader cooltype.dll Remote Code Execution - Ver2 (CVE-2010-2862)
2014-03-31 00:00:00
cvelist
cvelist
CVE-2010-2862
2010-08-05 18:00:00
threatpost
threatpost
Adobe Plans Emergency PDF Reader Patch
2010-08-05 18:54:01
Demo of CVE-2010-2862 Adobe Reader Flaw Exploit
2010-09-02 13:29:52
Online Bank Fraud Hammering Small Businesses
2010-09-02 13:04:11
cve
cve
CVE-2010-2862
2010-08-05 18:17:58
exploitdb
exploitdb
Acrobat Acrobat - Font Parsing Integer Overflow
2010-08-14 00:00:00
prion
prion
Integer overflow
2010-08-05 18:17:00
openvas
openvas
Adobe Reader/Acrobat Font Parsing Integer Overflow Vulnerability (CVE-2010-2862) - Windows
2010-08-06 00:00:00
Adobe Reader Font Parsing Integer Overflow Vulnerability (Linux)
2010-08-06 00:00:00
Adobe Reader/Acrobat Font Parsing Integer Overflow Vulnerability (Windows)
2010-08-06 00:00:00
nessus
nessus
RHEL 4 / 5 : acroread (RHSA-2010:0636)
2010-08-23 00:00:00
openSUSE Security Update : acroread (openSUSE-SU-2010:0573-1)
2010-09-02 00:00:00
SuSE 11 / 11.1 Security Update : Acrobat Reader (SAT Patch Numbers 3008 / 3009)
2010-12-02 00:00:00
redhat
redhat
(RHSA-2010:0636) Critical: acroread security update
2010-08-20 00:00:00
suse
suse
remote code execution in acroread
2010-09-01 13:59:57

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.7

Confidence

Low

EPSS

0.91

Percentile

98.9%

JSON
Related for NVD:CVE-2010-2862
checkpoint_advisories2cvelist1threatpost5cve1exploitdb1prion1openvas6nessus10redhat1suse1