9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.949 High
EPSS
Percentile
99.3%
Adobe Reader and Acrobat 9.x before 9.5.4, 10.x before 10.1.6, and 11.x
before 11.0.02 allow remote attackers to execute arbitrary code or cause a
denial of service (memory corruption) via a crafted PDF document, as
exploited in the wild in February 2013.
blog.fireeye.com/research/2013/02/in-turn-its-pdf-time.html
blogs.adobe.com/psirt/2013/02/adobe-reader-and-acrobat-vulnerability-report.html
launchpad.net/bugs/cve/CVE-2013-0640
nvd.nist.gov/vuln/detail/CVE-2013-0640
security-tracker.debian.org/tracker/CVE-2013-0640
www.cve.org/CVERecord?id=CVE-2013-0640